From 8e52815a55692d657aeca7f8ecf656cd65dcfce0 Mon Sep 17 00:00:00 2001 From: Sam Liddicott Date: Tue, 17 Jul 2007 17:02:04 +0000 Subject: iptables-xml Attached are: 1. A man page for iptables-xml 2. A fix for iptables.xslt allowing for an arbitrary depth of arguments or modifiers. Although iptables-xml cannot generate more than two levels deep, xml generated by other systems may prefer to generate 0xff00 than 0xff00 (which is what iptables-xml generates) even though the same iptables is re-generated on conversion. 3. A fix for iptables-xml.c so that combining of consecutive targets of rules with the same match into one XML rule, will not combine over a terminating action; i.e. there is no point in converting -A table -p tcp -j DROP -A table -p tcp -j MARK --set-mark 25 -A table -p tcp -j RETURN into one XML rule with multiple actions as they are probably not logically combined in the mind of the author. Signed-off by: Sam Liddicott --- iptables.xslt | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) (limited to 'iptables.xslt') diff --git a/iptables.xslt b/iptables.xslt index 4cf84191..07cec19c 100644 --- a/iptables.xslt +++ b/iptables.xslt @@ -44,7 +44,7 @@ - + ! - @@ -52,7 +52,8 @@ - - + + -- cgit v1.2.3