diff options
author | Yasuyuki KOZAKAI <yasuyuki@netfilter.org> | 2007-07-24 05:52:07 +0000 |
---|---|---|
committer | Yasuyuki KOZAKAI <yasuyuki@netfilter.org> | 2007-07-24 05:52:07 +0000 |
commit | 0d502bcdbc97ed359e84f6a21dfa0049b3b60a6c (patch) | |
tree | 537187d08bae1bac51328c5d27f3c24f72b6cc06 /iptables-restore.c | |
parent | 0b82e8e81e887843011c8771f70d2302901f7e5e (diff) |
Introduces xtables match/target registration
- moves lib_dir to xtables.c
- introduces struct pfinfo which has protocol family dependent infomations.
- unifies load_ip[6]tables_ko() and moves them as load_xtables_ko()
- introduces xt_{match,match_rule,target,tryload} and replaces
ip[6]t_* with them
- unifies following functions and move them to xtables.c
- find_{match,find_target}
- compatible_revision, compatible_{match,target}_revision
- introduces xtables_register_{match,target} and make
register_{match,target}[6] call them. xtables_register_* register ONLY
matches/targets matched protocol family
Some concepts:
- source compatibility for libip[6]t_xxx.c with warning on compilation
not binary compatibility.
- binary compatibility between 2.4/2.6 kernel and iptables/ip6tables,
of cause.
- xtables is enough to support only one address family at runtime.
Then xtables keeps infomations of only the focused address famiy
in struct afinfo.
Diffstat (limited to 'iptables-restore.c')
-rw-r--r-- | iptables-restore.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/iptables-restore.c b/iptables-restore.c index 66918a02..1a4beeb4 100644 --- a/iptables-restore.c +++ b/iptables-restore.c @@ -60,7 +60,7 @@ iptc_handle_t create_handle(const char *tablename, const char* modprobe ) if (!handle) { /* try to insmod the module if iptc_init failed */ - xtables_insmod("ip_tables", modprobe, 0); + load_xtables_ko(modprobe, 0); handle = iptc_init(tablename); } |