List setΒΆ
Example of using a list:set type
This section describes the rule
[test_list_set] section_type = general action = ['accept'] default_chain = INPUT ip_version = both interface = main protocol = tcp,udp set = list_set set_directions = dst
This section describes the list set
[list_set] section_type = ipset ipset_type = list:set set_name = ['list_set'] list_set_sections = ['new_set','static_dns_servers4']
This two sections describe the normal sets to be put inside the list set
[new_set] section_type = ipset ipset_type = hash:ip set_name = ['admin_workstations_x'] set_ips_v4 = ['137.138.142.166','137.138.25.22','10.18.2.204','137.138.160.37','137.138.142.156'] #set_hostnames = ['lxplus','pcthanos','syscontrol-dev','pcjcano2','kubernetes-node','kubernetes-master','agkara-train-2'] set_ips_v6 = ['2001:1458:201:e3::100:71e', '2001:1458:201:e3::100:6e', '2001:1458:201:a4::100:49', '2001:1458:201:e3::100:2f5'] [static_dns_servers4] section_type = ipset ipset_type = hash:net set_name = ['static_dns_servers4'] #set_ips_v4 = ['137.138.16.5,80', '137.138.17.5,443', '172.18.16.5,5550', '172.18.17.5,6598'] #set_hostnames = "test_port.sh" set_net_ranges_v4 = "test_nets_v4.sh" #set_net_ranges_v6 = "test_nets_v6.sh"