From 96296cfb7e01298234c7fa9403619f50391620d1 Mon Sep 17 00:00:00 2001
From: Henrik Nordstrom <henrik@henriknordstrom.net>
Date: Tue, 13 May 2008 13:08:26 +0200
Subject: iptables --list-rules command

Adds iptables --list-rules (-S) command, acting as a combination of
iptables --list and iptables-save.

The primary motivation behind this patch is to get iptables-save like
output capabilities in iptables-restore, allowing "iptables-restore -n"
to be used as a consistent API to iptables for all kind of operations,
not only blind updates..

As a bonus iptables also gets the capability of printing the rules
as-is.

This completely replaces the earlier patch which added the --rules
option.

Henrik Nordstrom <henrik@henriknordstrom.net>
---
 ip6tables.8.in | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'ip6tables.8.in')

diff --git a/ip6tables.8.in b/ip6tables.8.in
index f1033635..45b14dca 100644
--- a/ip6tables.8.in
+++ b/ip6tables.8.in
@@ -197,6 +197,11 @@ arguments given. The exact rules are suppressed until you use
  ip6tables -L -v
 .fi
 .TP
+.BR "-S, --list-rules " "[\fIchain\fP]"
+Print all rules in the selected chain.  If no chain is selected, all
+chains are printed like iptables-save. Like every other iptables command,
+it applies to the specified table (filter is the default).
+.TP
 .BR "-F, --flush " "[\fIchain\fP]"
 Flush the selected chain (all the chains in the table if none is given).
 This is equivalent to deleting all the rules one by one.
-- 
cgit v1.2.3