![]() Simpliest approach is to create all ipset sets once before loading any iptables rules. So you can not just run ipset restore -file myipset if saved sets are already used by iptables. Using ipset with iptables has a subtelty: all sets should be defined before loading iptables rules that reffer to them.Īlso, you can not destroy a set used by iptables rule, and you can not create a set with the same name as used one. 1 I could suggest a way to feed iptables with list of IPs by using ipset.
0 Comments
Leave a Reply. |