_            _    _        _         _
      /\ \         /\ \ /\ \     /\_\      / /\
      \_\ \       /  \ \\ \ \   / / /     / /  \
      /\__ \     / /\ \ \\ \ \_/ / /     / / /\ \__
     / /_ \ \   / / /\ \ \\ \___/ /     / / /\ \___\
    / / /\ \ \ / / /  \ \_\\ \ \_/      \ \ \ \/___/
   / / /  \/_// / /   / / / \ \ \        \ \ \
  / / /      / / /   / / /   \ \ \   _    \ \ \
 / / /      / / /___/ / /     \ \ \ /_/\__/ / /
/_/ /      / / /____\/ /       \ \_\\ \/___/ /
\_\/       \/_________/         \/_/ \_____\/
ipset 7.17
Dependencies: libmnl@1.0.5
Channel: guix
Location: gnu/packages/linux.scm (gnu packages linux)
Home page: https://ipset.netfilter.org/
Licenses: GPL 2+
Synopsis: Administration tool for IP sets
Description:

IP sets are a framework inside the Linux 2.4.x and 2.6.x kernel which can be administered by the ipset utility. Depending on the type, currently an IP set may store IP addresses, (TCP/UDP) port numbers or IP addresses with MAC addresses in a way which ensures lightning speed when matching an entry against a set.

If you want to

  • store multiple IP addresses or port numbers and match against the entire collection using a single iptables rule.

  • dynamically update iptables rules against IP addresses or ports without performance penalty.

  • express complex IP address and ports based rulesets with a single iptables rule and benefit from the speed of IP sets.

then IP sets may be the proper tool for you.

Total results: 1