diff options
author | Arturo Borrero <arturo.borrero.glez@gmail.com> | 2014-11-06 09:05:28 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2014-11-06 12:51:40 +0100 |
commit | 31f031b0d348afd1c343692eca4b496c4bf5d05d (patch) | |
tree | 7012e6344f70274e8cfcdcd093241730ec4270ff /doc/nft.xml | |
parent | 3cc636eda67c9dd416e584e21ccb9031d44dcbd0 (diff) |
nft: don't resolve hostnames by default
This patch changes the default behaviour of nft to not translate IP
addresses to hostnames when printing rules if no options are passed.
The options regarding translations after this patch are:
<no -n/-N> show IP addresses numerically (default behaviour)
-n show IP addresses numerically
-nn show Internet services and uid/gid numerically
-nnn show protocols numerically
-N (--reversedns) translate IP addresses to names
The idea is to avoid breaking existing scripts that most likely rely on
'-n' to save the ruleset, so we reduce the impact of this patch and
provide a default behaviour that doesn't generate network traffic when
listing / saving the ruleset.
Joint work with Pablo.
Suggested-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'doc/nft.xml')
-rw-r--r-- | doc/nft.xml | 15 |
1 files changed, 12 insertions, 3 deletions
diff --git a/doc/nft.xml b/doc/nft.xml index cec5ef3b..e45a5936 100644 --- a/doc/nft.xml +++ b/doc/nft.xml @@ -101,9 +101,18 @@ vi:ts=4 sw=4 <para> Numeric output: Addresses and other information that might need network traffic to resolve to symbolic names - are shown numerically. When used twice, internet services - and UIDs/GIDs are also shown numerically. When used thrice, - protocol numbers are also shown numerically. + are shown numerically (default behaviour). When used twice, + internet services are translated. When used twice, internet + services and UIDs/GIDs are also shown numerically. When used + three times, protocol numbers are also shown numerically. + </para> + </listitem> + </varlistentry> + <varlistentry> + <term><option>-N</option></term> + <listitem> + <para> + Translate IP addresses to DNS names. </para> </listitem> </varlistentry> |