.\"******************************************************************* .\" .\" This file was generated with po4a. Translate the source file. .\" .\"******************************************************************* .\" .\" Japanese Version Copyright (c) 2013 Akihiro MOTOKI .\" all rights reserved. .\" Translated 2013-04-08, Akihiro MOTOKI .\" .TH IPTABLES\-XML 1 "" "iptables 1.4.21" "iptables 1.4.21" .\" .\" Man page written by Sam Liddicott .\" It is based on the iptables-save man page. .\" .\" This program is free software; you can redistribute it and/or modify .\" it under the terms of the GNU General Public License as published by .\" the Free Software Foundation; either version 2 of the License, or .\" (at your option) any later version. .\" .\" This program is distributed in the hope that it will be useful, .\" but WITHOUT ANY WARRANTY; without even the implied warranty of .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the .\" GNU General Public License for more details. .\" .\" You should have received a copy of the GNU General Public License .\" along with this program; if not, write to the Free Software .\" Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. .\" .\" .SH 名前 iptables\-xml \(em iptables\-xml 形式から XML 形式へ変換する .SH 書式 \fBiptables\-xml\fP [\fB\-c\fP] [\fB\-v\fP] .SH 説明 .PP \fBiptables\-xml\fP を使うと、iptables\-save の出力をより扱いやすい XML 形式に変換し、標準出力に出力することができる。 ファイルに書き出すには、シェルで提供されている I/O リダイレクションを使うこと。 .TP \fB\-c\fP, \fB\-\-combine\fP combine consecutive rules with the same matches but different targets. iptables does not currently support more than one target per match, so this simulates that by collecting the targets from consecutive iptables rules into one action tag, but only when the rule matches are identical. Terminating actions like RETURN, DROP, ACCEPT and QUEUE are not combined with subsequent targets. .TP \fB\-v\fP, \fB\-\-verbose\fP XML の生成元となった iptables の行を XML コメントとして出力する。 .PP iptables\-xml does a mechanistic conversion to a very expressive xml format; the only semantic considerations are for \-g and \-j targets in order to discriminate between and as it helps xml processing scripts if they can tell the difference between a target like SNAT and another chain. 出力例を以下に示す。

tcp

8443
.PP XML から iptables\-save への変換は、以下のように iptables.xslt スクリプトと xsltproc を使って行うことができる。 libxsltproc などを使ったカスタムプログラムで行うことができる。 xsltproc iptables.xslt my\-iptables.xml | iptables\-restore .SH バグ iptables\-1.3.7 リリースの時点では知られていない。 .SH 作者 Sam Liddicott .SH 関連項目 \fBiptables\-save\fP(8), \fBiptables\-restore\fP(8), \fBiptables\fP(8)