diff options
author | Pablo M. Bermudo Garay <pablombg@gmail.com> | 2016-08-26 18:58:44 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2016-08-30 18:57:53 +0200 |
commit | ef2a7e9fe0d82c691aeee1cbd61095841231974f (patch) | |
tree | 41191252aca69bd85eb736799ab659e4446b8ebc /extensions/libxt_connlimit.man | |
parent | 6deb305b668d0c1f12b5955e76ea5097ca87bf9b (diff) |
xtables-compat: add rule cache
This patch adds a cache of rules within the nft handle. This feature is
useful since the whole ruleset was brought from the kernel for every
chain during listing operations. In addition with the new checks of
ruleset compatibility, the rule list is loaded one more time.
Now all the operations causing changes in the ruleset must invalidate
the cache, a function called flush_rule_cache has been introduced for
this purpose.
Signed-off-by: Pablo M. Bermudo Garay <pablombg@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'extensions/libxt_connlimit.man')
0 files changed, 0 insertions, 0 deletions