Re: Complex ruleset questions
This is a discussion on Re: Complex ruleset questions within the IPFilter forums, part of the System Security and Security Related category; Le 2003-06-27, Damian Gerow écrivait : > Hmmmm.... It'll work in theory, It'll work in practice as ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
06-27-2003
|
|||
|
|||
Re: Complex ruleset questions
Le 2003-06-27, Damian Gerow écrivait :
> Hmmmm.... It'll work in theory, It'll work in practice as well, I have used this pattern succesfully for years as part of some complex rulesets. > specifying the allow rules twice, but means that any rule insertions between > the 'skip' rules and the 'head' rule will break the skips. :( But there is no reason to insert anything between the skips, they notionally are part of the same single high-level operation consisting in branching into a group when any one in a set of predicates matches. Think of it the way a compiler would generate code for a complex boolean expression using a combination of elementary tests and jumps. Thomas. -- Thomas.Quinot@Cuivre.FR.EU.ORG 
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT +1. The time now is 08:19 AM.
