In ROS7 routing Rules...
it would be handy in source and destination to be able to add an address list.
Also to be able to add the NOT option.
Don't you think?
Would it be possible?
Pe1chl: No, that would not be possible. At least not without modification of the Linux kernel (it does not support address lists in routing rules, and no NOT option either).
Anav: an options package for zero trust cloudflare tunnel !!!
"routing rules" are not processed using iptables/nftables but they are a separate feature accessible in Linux via "ip rule". It does not support address lists or the NOT operator.Pe1chl: No, that would not be possible. At least not without modification of the Linux kernel (it does not support address lists in routing rules, and no NOT option either).
Well, it might be a question of interpretation but IMO it's not a limitation in the kernel itself but rather in the RoS rule engine. There are close to no limitations at all when using Netfilter/[e]BPF with iptables/nftables, it's just a matter of how the rule engine interpret and applies things to the network stack.
"routing rules" are not processed using iptables/nftables but they are a separate feature accessible in Linux via "ip rule". It does not support address lists or the NOT operator.