[pve-devel] firewall : add ip "alias" feature suggestion.
Dietmar Maurer
dietmar at proxmox.com
Mon Apr 7 10:23:05 CEST 2014
> We could create 1 ipset by alias, but I don't known if it's not too big memory
> overhead, as hashtable min size is 64.
> But we can make ipset of ipset, it's a supported feature.
>
Oh, my thought was that the user can do that if he really want to have an alias for a single IP.
> (For DNS, what do you have in mind? )
Oh, ignore that (was a bad idea).
> >> AFAIR I saw that feature on a CISCO firewall some time ago?
> Yes, indeed. (Currently it's the way I manage my cisco firewall ;)
I guess we can add this feature if you want.
More information about the pve-devel
mailing list