SOURCES: iptables-1.3.5-owner-xid.patch, iptables-20070806.patch -...

arekm arekm at pld-linux.org
Tue Jan 29 08:30:23 CET 2008 

Author: arekm                        Date: Tue Jan 29 07:30:23 2008 GMT
Module: SOURCES                       Tag: HEAD
---- Log message:
- update

---- Files affected:
SOURCES:
   iptables-1.3.5-owner-xid.patch (1.1 -> 1.2) , iptables-20070806.patch (1.2 -> 1.3) 

---- Diffs:

================================================================
Index: SOURCES/iptables-1.3.5-owner-xid.patch
diff -u SOURCES/iptables-1.3.5-owner-xid.patch:1.1 SOURCES/iptables-1.3.5-owner-xid.patch:1.2
--- SOURCES/iptables-1.3.5-owner-xid.patch:1.1	Sun Sep  9 22:45:24 2007
+++ SOURCES/iptables-1.3.5-owner-xid.patch	Tue Jan 29 08:30:17 2008
@@ -21,11 +21,11 @@
  #endif /* IP6T_OWNER_COMM */
 @@ -44,6 +48,8 @@ static struct option opts[] = {
  #ifdef IP6T_OWNER_COMM
- 	{ "cmd-owner", 1, 0, '5' },
+ 	{ "cmd-owner", 1, NULL, '5' },
  #endif
-+	{ "nid-owner", 1, 0, '6' },
-+	{ "xid-owner", 1, 0, '7' },
- 	{0}
++	{ "nid-owner", 1, NULL, '6' },
++	{ "xid-owner", 1, NULL, '7' },
+ 	{ }
  };
  
 @@ -129,6 +135,28 @@ parse(int c, char **argv, int invert, un
@@ -127,11 +127,11 @@
  IPTABLES_VERSION);
 @@ -46,6 +50,8 @@ static struct option opts[] = {
  #ifdef IPT_OWNER_COMM
- 	{ "cmd-owner", 1, 0, '5' },
+ 	{ "cmd-owner", 1, NULL, '5' },
  #endif
-+	{ "nid-owner", 1, 0, '6' },
-+	{ "xid-owner", 1, 0, '7' },
- 	{0}
++	{ "nid-owner", 1, NULL, '6' },
++	{ "xid-owner", 1, NULL, '7' },
+ 	{ }
  };
  
 @@ -131,6 +137,28 @@ parse(int c, char **argv, int invert, un

================================================================
Index: SOURCES/iptables-20070806.patch
diff -u SOURCES/iptables-20070806.patch:1.2 SOURCES/iptables-20070806.patch:1.3
--- SOURCES/iptables-20070806.patch:1.2	Sun Sep  9 21:43:28 2007
+++ SOURCES/iptables-20070806.patch	Tue Jan 29 08:30:18 2008
@@ -787,31 +787,6 @@
 +{
 +	register_match(&connlimit);
 +}
-diff -urN iptables-1.3.8/extensions/libipt_connlimit.man iptables/extensions/libipt_connlimit.man
---- iptables-1.3.8/extensions/libipt_connlimit.man	1970-01-01 01:00:00.000000000 +0100
-+++ iptables/extensions/libipt_connlimit.man	2006-12-04 12:15:19.000000000 +0100
-@@ -0,0 +1,21 @@
-+Allows you to restrict the number of parallel TCP connections to a
-+server per client IP address (or address block).
-+.TP
-+[\fB!\fR] \fB--connlimit-above \fIn\fR
-+match if the number of existing tcp connections is (not) above n
-+.TP
-+.BI "--connlimit-mask " "bits"
-+group hosts using mask
-+.P
-+Examples:
-+.TP
-+# allow 2 telnet connections per client host
-+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit --connlimit-above 2 -j REJECT
-+.TP
-+# you can also match the other way around:
-+iptables -A INPUT -p tcp --syn --dport 23 -m connlimit ! --connlimit-above 2 -j ACCEPT
-+.TP
-+# limit the nr of parallel http requests to 16 per class C sized \
-+network (24 bit netmask)
-+iptables -p tcp --syn --dport 80 -m connlimit --connlimit-above 16
-+--connlimit-mask 24 -j REJECT
 diff -urN iptables-1.3.8/extensions/libipt_geoip.c iptables/extensions/libipt_geoip.c
 --- iptables-1.3.8/extensions/libipt_geoip.c	1970-01-01 01:00:00.000000000 +0100
 +++ iptables/extensions/libipt_geoip.c	2006-12-05 04:36:39.000000000 +0100
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/iptables-1.3.5-owner-xid.patch?r1=1.1&r2=1.2&f=u
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SOURCES/iptables-20070806.patch?r1=1.2&r2=1.3&f=u

More information about the pld-cvs-commit mailing list