On 01/22/2014 09:28 AM, Jiri Popelka wrote:
On 01/22/2014 03:16 AM, Jorge Fábregas wrote:
What's the purpose of the *INPUT_direct* custom-chain in the filter/INPUT chain? Is this the recommended chain to use when inserting custom rules via the --direct option? Is it sort of like, to keep things organized?
Only the allmighty creator ;) of the 'direct' stuff, i.e. Thomas can answer this properly, but yes, I think that's the use-case.
Yes, the _direct chains are used for direct rules, that are added to netfilter built-in chains. You can also create own chains and use them as a target in a _direct rule...
-- Jiri _______________________________________________ firewalld-users mailing list firewalld-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/firewalld-users
Regards, Thomas