Package: ferm Version: 2.2-3 Severity: wishlist Tags: upstream iptables keeps packet and byte counters for each rule, and these can be quite useful for various purposes. Unfortunately, when ferm applies its ruleset, all the counters get zeroed.
iptables does allow counters to be restored for each rule. Mightn't it be possible then that ferm upon flushing the rules saves all the counters and then tries to restore them for each rule for which a counter was previously known? I could imagine this to be as simple as hashing the rule, storing the counters against this hash, and upon restore, setting counters for all rules for which a hash can be found. Thanks for your consideration, -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.3.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages ferm depends on: ii debconf 1.5.58 ii iptables 1.4.21-2+b1 ii lsb-base 9.20150917 ii perl 5.20.2-6 Versions of packages ferm recommends: ii libnet-dns-perl 0.81-2 ferm suggests no packages. -- Configuration Files: /etc/ferm/ferm.conf [Errno 13] Permission denied: u'/etc/ferm/ferm.conf' -- no debconf information -- .''`. martin f. krafft <madduck@d.o> @martinkrafft : :' : proud Debian developer `. `'` http://people.debian.org/~madduck `- Debian - when you have better things to do than fixing systems
digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)
