Lines Matching +full:set +full:- +full:env

13  * ipset (local-zone statements) into a firewall rule IPSet.  For firewall
16  * To use the IPset module, install the libmnl-dev (or libmnl-devel) package
17  * and configure with --enable-ipset.  And compile.  Then enable the ipset
18  * module in unbound.conf with module-config: "ipset validator iterator"
19  * then create it with ipset -N blacklist iphash and then add
20  * local-zone: "example.com." ipset
22  * looked up added to the set.
24  * Set the name of the set with
26  *   name-v4: "blacklist"
27  *   name-v6: "blacklist6"
28  * in unbound.conf.  The set can be used in this way:
29  *   iptables -A INPUT -m set --set blacklist src -j DROP
30  *   ip6tables -A INPUT -m set --set blacklist6 src -j DROP
54 int ipset_startup(struct module_env* env, int id);
56 void ipset_destartup(struct module_env* env, int id);
58 int ipset_init(struct module_env* env, int id);
60 void ipset_deinit(struct module_env* env, int id);
67 /** clear the ipset query-specific contents out of qstate */
70 size_t ipset_get_mem(struct module_env* env, int id);