Stefan Berger ea7c73a76f Enable chains with names having a known prefix ... This patch enables chains that have a known prefix in their name. Known prefixes are: 'ipv4', 'ipv6', 'arp', 'rarp'. All prefixes are also protocols that can be evaluated on the ebtables level. Following the prefix they will be automatically connected to an interface's 'root' chain and jumped into following the protocol they evaluate, i.e., a table 'arp-xyz' will be accessed from the root table using ebtables -t nat -A <iface root table> -p arp -j I-<ifname>-arp-xyz thus generating a 'root' chain like this one here: Bridge chain: libvirt-O-vnet0, entries: 5, policy: ACCEPT -p IPv4 -j O-vnet0-ipv4 -p ARP -j O-vnet0-arp -p 0x8035 -j O-vnet0-rarp -p ARP -j O-vnet0-arp-xyz -j DROP where the chain 'arp-xyz' is accessed for filtering of ARP packets. Signed-off-by: Stefan Berger <stefanb@linux.vnet.ibm.com>		2011-11-18 11:58:18 -05:00
..
basictypes.rng	Use a common xml type for ceph secret usage.	2011-10-28 16:01:14 -06:00
capability.rng	doc: Add <deviceboot> capability.	2011-11-03 13:41:04 -06:00
domain.rng	snapshot: update rng to support full domain in xml	2011-09-03 08:12:13 -06:00
domaincommon.rng	XML definitions for guest NUMA and parsing routines	2011-11-17 13:34:42 -07:00
domainsnapshot.rng	snapshot: also support disks by path	2011-09-05 07:03:04 -06:00
interface.rng
Makefile.am	snapshot: update rng to support full domain in xml	2011-09-03 08:12:13 -06:00
network.rng	link-state: conf: Add element to XML for controling link state	2011-09-06 16:08:15 +08:00
networkcommon.rng
nodedev.rng
nwfilter.rng	Enable chains with names having a known prefix	2011-11-18 11:58:18 -05:00
secret.rng	Use a common xml type for ceph secret usage.	2011-10-28 16:01:14 -06:00
storageencryption.rng
storagepool.rng
storagevol.rng