Package: ferm Version: 2.0.3-1 Severity: normal Tags: patch
Following rule is valid but not supported by ferm: #v+ -A FILTER -m set ! --set registered src -j DROP #v- -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.29-1-686 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=pl_PL.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- Piotr Lewandowski
diff -u a/src/ferm b/src/ferm --- a/src/ferm 2009-02-28 17:43:53.000000000 +0100 +++ b/src/ferm 2009-04-03 05:40:04.000000000 +0200 @@ -271,7 +271,7 @@ add_match_def 'realm', qw(realm!); add_match_def 'recent', qw(name=s !set*0 !remove*0 !rcheck*0 !update*0 !seconds !hitcount rttl*0 rsource*0 rdest*0); add_match_def 'rt', qw(rt-type! rt-segsleft! rt-len! rt-0-res*0 rt-0-addrs=c rt-0-not-strict*0); -add_match_def 'set', qw(set=sc); +add_match_def 'set', qw(!set=sc); add_match_def 'state', qw(state=c); add_match_def 'statistic', qw(mode=s probability=s every=s packet=s); add_match_def 'string', qw(algo=s from=s to=s string hex-string);
