How to check multiple list from IPSet in IPTables with a single rule? The 2019 Stack Overflow Developer Survey Results Are In Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) 2019 Community Moderator Election ResultsIPTABLES rule for separating usersIptables: matching outgoing traffic with conntrack and owner. Works with strange dropsUsing iptables to block for specific servicesWill this open up a non-standard port to ssh?How to match properly against an IP set of type 'hash:ip,port'?Change timeout of an entry of ipset with iptables ruleWhy do some TCP reset packets show up in my iptables log?libvirt guests: accept connections from outside networkDynamically populating ipset list to blacklist ip addresses which match a certain iptables ruleHow to block certain protocols with ipset?

60's-70's movie: home appliances revolting against the owners

Am I ethically obligated to go into work on an off day if the reason is sudden?

Does Parliament need to approve the new Brexit delay to 31 October 2019?

How many Rusted Keys do you need to get red items most of the time?

Is there a way to generate uniformly distributed points on a sphere from a fixed amount of random real numbers per point?

What force causes entropy to increase?

Student Loan from years ago pops up and is taking my salary

What is the padding with red substance inside of steak packaging?

Can a flute soloist sit?

Can I visit the Trinity College (Cambridge) library and see some of their rare books

How to make Illustrator type tool selection automatically adapt with text length

Variable with quotation marks "$()"

"... to apply for a visa" or "... and applied for a visa"?

What can I do if neighbor is blocking my solar panels intentionally?

Match Roman Numerals

Single author papers against my advisor's will?

Is it ok to offer lower paid work as a trial period before negotiating for a full-time job?

Voltage transmission

Circular reasoning in L'Hopital's rule

Would an alien lifeform be able to achieve space travel if lacking in vision?

What happens to a Warlock's expended Spell Slots when they gain a Level?

One-dimensional Japanese puzzle

ELI5: Why do they say that Israel would have been the fourth country to land a spacecraft on the Moon and why do they call it low cost?

how can a perfect fourth interval be considered either consonant or dissonant?



How to check multiple list from IPSet in IPTables with a single rule?



The 2019 Stack Overflow Developer Survey Results Are In
Announcing the arrival of Valued Associate #679: Cesar Manara
Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern)
2019 Community Moderator Election ResultsIPTABLES rule for separating usersIptables: matching outgoing traffic with conntrack and owner. Works with strange dropsUsing iptables to block for specific servicesWill this open up a non-standard port to ssh?How to match properly against an IP set of type 'hash:ip,port'?Change timeout of an entry of ipset with iptables ruleWhy do some TCP reset packets show up in my iptables log?libvirt guests: accept connections from outside networkDynamically populating ipset list to blacklist ip addresses which match a certain iptables ruleHow to block certain protocols with ipset?



.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;








-1















How can I check multiple list of IPs from IPSet in IPTables with a single rule?



I need to add check two list of IPs because it is too big. I know it is not healthy, but I need to do it that way.



Current rule:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -j DROP


Now I want to make it something like that:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1, trustedlist2 src -j DROP


I didnt want to lock myself out.






linux iptables ipset







share|improve this question









New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.




















  • Why -1 for this question?

    – Sezer Toker
    yesterday

















-1















How can I check multiple list of IPs from IPSet in IPTables with a single rule?



I need to add check two list of IPs because it is too big. I know it is not healthy, but I need to do it that way.



Current rule:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -j DROP


Now I want to make it something like that:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1, trustedlist2 src -j DROP


I didnt want to lock myself out.






linux iptables ipset







share|improve this question









New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.




















  • Why -1 for this question?

    – Sezer Toker
    yesterday













-1












-1








-1


1






How can I check multiple list of IPs from IPSet in IPTables with a single rule?



I need to add check two list of IPs because it is too big. I know it is not healthy, but I need to do it that way.



Current rule:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -j DROP


Now I want to make it something like that:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1, trustedlist2 src -j DROP


I didnt want to lock myself out.






linux iptables ipset







share|improve this question









New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.












How can I check multiple list of IPs from IPSet in IPTables with a single rule?



I need to add check two list of IPs because it is too big. I know it is not healthy, but I need to do it that way.



Current rule:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -j DROP


Now I want to make it something like that:



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1, trustedlist2 src -j DROP


I didnt want to lock myself out.






linux iptables ipset




linux iptables ipset






share|improve this question









New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.











share|improve this question









New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









share|improve this question




share|improve this question








edited yesterday







Sezer Toker













New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.









asked yesterday









Sezer TokerSezer Toker

83




83




New contributor




Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.





New contributor





Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.






Sezer Toker is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.












  • Why -1 for this question?

    – Sezer Toker
    yesterday

















  • Why -1 for this question?

    – Sezer Toker
    yesterday
















Why -1 for this question?

– Sezer Toker
yesterday





Why -1 for this question?

– Sezer Toker
yesterday










1 Answer
1






active

oldest

votes


















0














Try this



-A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -m set ! --match-set trustedlist2 src -j DROP


Better solution is arranging ipset size by providing maxelem option. For example;



ipset create trustedlist1 hash:ip maxelem 2000000





share|improve this answer























    Your Answer








    StackExchange.ready(function()
    var channelOptions =
    tags: "".split(" "),
    id: "106"
    ;
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function()
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled)
    StackExchange.using("snippets", function()
    createEditor();
    );

    else
    createEditor();

    );

    function createEditor()
    StackExchange.prepareEditor(
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: false,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: null,
    bindNavPrevention: true,
    postfix: "",
    imageUploader:
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    ,
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    );



    );






    Sezer Toker is a new contributor. Be nice, and check out our Code of Conduct.









    draft saved

    draft discarded


















    StackExchange.ready(
    function ()
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f511814%2fhow-to-check-multiple-list-from-ipset-in-iptables-with-a-single-rule%23new-answer', 'question_page');

    );

    Post as a guest















    Required, but never shown

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    0














    Try this



    -A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -m set ! --match-set trustedlist2 src -j DROP


    Better solution is arranging ipset size by providing maxelem option. For example;



    ipset create trustedlist1 hash:ip maxelem 2000000





    share|improve this answer



























      0














      Try this



      -A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -m set ! --match-set trustedlist2 src -j DROP


      Better solution is arranging ipset size by providing maxelem option. For example;



      ipset create trustedlist1 hash:ip maxelem 2000000





      share|improve this answer

























        0












        0








        0







        Try this



        -A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -m set ! --match-set trustedlist2 src -j DROP


        Better solution is arranging ipset size by providing maxelem option. For example;



        ipset create trustedlist1 hash:ip maxelem 2000000





        share|improve this answer













        Try this



        -A INPUT -m state --state NEW -m set ! --match-set trustedlist1 src -m set ! --match-set trustedlist2 src -j DROP


        Better solution is arranging ipset size by providing maxelem option. For example;



        ipset create trustedlist1 hash:ip maxelem 2000000






        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered yesterday









        ibrahimibrahim

        442312




        442312




















            Sezer Toker is a new contributor. Be nice, and check out our Code of Conduct.









            draft saved

            draft discarded


















            Sezer Toker is a new contributor. Be nice, and check out our Code of Conduct.












            Sezer Toker is a new contributor. Be nice, and check out our Code of Conduct.











            Sezer Toker is a new contributor. Be nice, and check out our Code of Conduct.














            Thanks for contributing an answer to Unix & Linux Stack Exchange!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid


            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.

            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function ()
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f511814%2fhow-to-check-multiple-list-from-ipset-in-iptables-with-a-single-rule%23new-answer', 'question_page');

            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            -ipset, iptables, linux
            -

            Popular posts from this blog

            Creating 100m^2 grid automatically using QGIS?Creating grid constrained within polygon in QGIS?Createing polygon layer from point data using QGIS?Creating vector grid using QGIS?Creating grid polygons from coordinates using R or PythonCreating grid from spatio temporal point data?Creating fields in attributes table using other layers using QGISCreate .shp vector grid in QGISQGIS Creating 4km point grid within polygonsCreate a vector grid over a raster layerVector Grid Creates just one grid

            Image
            Pattern match does not work in bash script Mage Armor with Defense fighting style (for Adventurers League bladeslinger) LaTeX closing $ signs makes cursor jump String Manipulation Interpreter Can divisibility rules for digits be generalized to sum of digits I'm planning on buying a laser printer but concerned about the life cycle of toner in the machine What is the offset in a seaplane's hull? How can I make my BBEG immortal short of making them a Lich or Vampire? What are the differences between the usage of 'it' and 'they'? The use of multiple foreign keys on same column in SQL Server How did the USSR manage to innovate in an environment characterized by government censorship and high bureaucracy? Is it tax fraud for an individual to declare non-taxable revenue as taxable income? (US tax laws) Why Is Death Allowed In the Matrix? Minkowski space Why are 150k or 200k jobs considered good when there are 300k+ births a month? Why do f...
            Read more

            Why is this plane circling around the Lucknow airport every day?Why do aircraft on Flight Radar 24 jump around randomly sometimes?What airport has this walkway over a taxiway?How does Chicago O'Hare's tower sequence aircraft at peak capacity?Which airport is featured in this Delta commercial?After a crash, for how long is the airport closed?Can a passenger plane stand still in the air, or hover at a fixed location above a ground?What are those trucks towing around, and why?What is this airport outside of Cairo, Egypt?Which US airport has the lowest circling MDH?What is this airport video?

            Image
            Freedom of speech and where it applies THT: What is a squared annular “ring”? Hot bath for aluminium engine block and heads Delete database accidentally by a bash, rescue please Why do IPv6 unique local addresses have to have a /48 prefix? How can Trident be so inexpensive? Will it orbit Triton or just do a (slow) flyby? Customize circled numbers Drawing ramified coverings with tikz How does the reference system of the Majjhima Nikaya work? Why did the EU agree to delay the Brexit deadline? Melting point of aspirin, contradicting sources Is Asuka Langley-Soryu disgusted by Shinji? Did US corporations pay demonstrators in the German demonstrations against article 13? Is camera lens focus an exact point or a range? Does a 'pending' US visa application constitute a denial? GraphicsGrid with a Label for each Column and Row How do you respond to a colleague from another team when they're wrongly expecting that you'll help them? How is flybla...
            Read more

            Nikolai Prilezhaev Bibliography References External links Navigation menuEarly Russian Organic Chemists and Their Legacy092774english translationRussian Biography

            19th-century chemists20th-century chemists1877 births1944 deathsRussian chemists RussianO.S.KopossevoNizhny NovgorodMoscoworganic chemistPrilezhaev ReactionepoxidesalkenesperoxyacidsUniversity of WarsawYegor Yegorovich VagnerGeorg WagnerSt. PetersburgPolytechnic in KievUniversity of MinskBelarusian Academy of SciencesAlexei Nikolaevich Bachname reactionSoviet Academy of Sciences Nikolai Alexandrovich Prilezhaev , Russian: Николай Александрович Прилежаев , (Born 15 [O.S. 1877] 27 [1] in Kopossevo near Nizhny Novgorod, died May 26, 1944 in Moscow) was a Russian organic chemist. The Prilezhaev Reaction between epoxides and alkenes to form peroxyacids is named after him. Prilezhaev was the son of a clergyman and studied chemistry at the Theological Seminary in Warsaw (graduated in 1895) and then at the Univ...
            Read more