path: root/iptables-restore.c
diff options
authorYasuyuki KOZAKAI <>2007-07-24 05:52:07 +0000
committerYasuyuki KOZAKAI <>2007-07-24 05:52:07 +0000
commit0d502bcdbc97ed359e84f6a21dfa0049b3b60a6c (patch)
tree537187d08bae1bac51328c5d27f3c24f72b6cc06 /iptables-restore.c
parent0b82e8e81e887843011c8771f70d2302901f7e5e (diff)
Introduces xtables match/target registration
- moves lib_dir to xtables.c - introduces struct pfinfo which has protocol family dependent infomations. - unifies load_ip[6]tables_ko() and moves them as load_xtables_ko() - introduces xt_{match,match_rule,target,tryload} and replaces ip[6]t_* with them - unifies following functions and move them to xtables.c - find_{match,find_target} - compatible_revision, compatible_{match,target}_revision - introduces xtables_register_{match,target} and make register_{match,target}[6] call them. xtables_register_* register ONLY matches/targets matched protocol family Some concepts: - source compatibility for libip[6]t_xxx.c with warning on compilation not binary compatibility. - binary compatibility between 2.4/2.6 kernel and iptables/ip6tables, of cause. - xtables is enough to support only one address family at runtime. Then xtables keeps infomations of only the focused address famiy in struct afinfo.
Diffstat (limited to 'iptables-restore.c')
1 files changed, 1 insertions, 1 deletions
diff --git a/iptables-restore.c b/iptables-restore.c
index 66918a02..1a4beeb4 100644
--- a/iptables-restore.c
+++ b/iptables-restore.c
@@ -60,7 +60,7 @@ iptc_handle_t create_handle(const char *tablename, const char* modprobe )
if (!handle) {
/* try to insmod the module if iptc_init failed */
- xtables_insmod("ip_tables", modprobe, 0);
+ load_xtables_ko(modprobe, 0);
handle = iptc_init(tablename);