netfilter: ipset: add hash:ip,mark data type to ipset - openslx/kernel-qcow2-linux.git

diff options

author	Vytas Dauksa	2013-12-17 15:01:43 +0100
committer	Jozsef Kadlecsik	2014-03-06 09:31:42 +0100
commit	3b02b56cd5988d569731f6c0c26992296e46b758 (patch)
tree	fc2af4bd9de189edc2a374816d8920a897f4da4d /net/netfilter/ipset/ip_set_hash_gen.h
parent	netfilter: ipset: Add hash: fix coccinelle warnings (diff)
download	kernel-qcow2-linux-3b02b56cd5988d569731f6c0c26992296e46b758.tar.gz kernel-qcow2-linux-3b02b56cd5988d569731f6c0c26992296e46b758.tar.xz kernel-qcow2-linux-3b02b56cd5988d569731f6c0c26992296e46b758.zip

netfilter: ipset: add hash:ip,mark data type to ipset

Introduce packet mark support with new ip,mark hash set. This includes userspace and kernelspace code, hash:ip,mark set tests and man page updates. The intended use of ip,mark set is similar to the ip:port type, but for protocols which don't use a predictable port number. Instead of port number it matches a firewall mark determined by a layer 7 filtering program like opendpi. As well as allowing or blocking traffic it will also be used for accounting packets and bytes sent for each protocol. Signed-off-by: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>

Diffstat (limited to 'net/netfilter/ipset/ip_set_hash_gen.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: