diff options
author | Henrik Nordstrom <henrik@henriknordstrom.net> | 2008-05-13 13:08:26 +0200 |
---|---|---|
committer | Patrick McHardy <kaber@trash.net> | 2008-05-13 13:08:26 +0200 |
commit | 96296cfb7e01298234c7fa9403619f50391620d1 (patch) | |
tree | 8ae6e4457a0d70a40b573b606488744a62a7a3bb /include | |
parent | 48c1bc6fa2f3aa755e89518054ef3f612d7b2c1f (diff) |
iptables --list-rules command
Adds iptables --list-rules (-S) command, acting as a combination of
iptables --list and iptables-save.
The primary motivation behind this patch is to get iptables-save like
output capabilities in iptables-restore, allowing "iptables-restore -n"
to be used as a consistent API to iptables for all kind of operations,
not only blind updates..
As a bonus iptables also gets the capability of printing the rules
as-is.
This completely replaces the earlier patch which added the --rules
option.
Henrik Nordstrom <henrik@henriknordstrom.net>
Diffstat (limited to 'include')
-rw-r--r-- | include/ip6tables.h | 1 | ||||
-rw-r--r-- | include/iptables.h | 2 |
2 files changed, 3 insertions, 0 deletions
diff --git a/include/ip6tables.h b/include/ip6tables.h index 0bed11f8..077fee92 100644 --- a/include/ip6tables.h +++ b/include/ip6tables.h @@ -22,5 +22,6 @@ extern int do_command6(int argc, char *argv[], char **table, extern int for_each_chain(int (*fn)(const ip6t_chainlabel, int, ip6tc_handle_t *), int verbose, int builtinstoo, ip6tc_handle_t *handle); extern int flush_entries(const ip6t_chainlabel chain, int verbose, ip6tc_handle_t *handle); extern int delete_chain(const ip6t_chainlabel chain, int verbose, ip6tc_handle_t *handle); +void print_rule(const struct ip6t_entry *e, ip6tc_handle_t *h, const char *chain, int counters); #endif /*_IP6TABLES_USER_H*/ diff --git a/include/iptables.h b/include/iptables.h index e5f8b400..ecc7168f 100644 --- a/include/iptables.h +++ b/include/iptables.h @@ -23,6 +23,8 @@ extern int flush_entries(const ipt_chainlabel chain, int verbose, iptc_handle_t *handle); extern int for_each_chain(int (*fn)(const ipt_chainlabel, int, iptc_handle_t *), int verbose, int builtinstoo, iptc_handle_t *handle); +extern void print_rule(const struct ipt_entry *e, + iptc_handle_t *handle, const char *chain, int counters); /* kernel revision handling */ extern int kernel_version; |