Ipset
Ipset
http://ipset.netfilter.org/
administration tool for kernel IP sets
IP sets are a framework inside the Linux 2.4.x and 2.6.x kernel which can be administered by the ipset(8) utility. Depending on the type, currently an IP set may store IP addresses, (TCP/UDP) port numbers or IP addresses with MAC addresses in a way which ensures lightning speed when matching an entry against a set.
If you want to
- store multiple IP addresses or port numbers and match against
the entire collection using a single iptables rule. * dynamically update iptables rules against IP addresses or ports without performance penalty. * express complex IP address and ports based rulesets with a single iptables rule and benefit from the speed of IP sets.
then IP sets may be the proper tool for you.
Licensing
License
Verified by
Verified on
Notes
License
Verified by
Debian: Neutron Soutmun <neo.neutron@gmail.com>
Verified on
26 September 2014
Notes
License: gpl-2+
Leaders and contributors
Resources and communication
| Audience | Resource type | URI |
|---|---|---|
| Debian (Ref) | https://tracker.debian.org/pkg/ipset | |
| Download | http://ipset.netfilter.org/install.html |
Software prerequisites
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software or copyright-licenses or other similar notices described in this text has its own copyright notice and license, which can usually be found in the distribution or license text itself.