Hadn't heard of ipset before, but yeah, that seems to be a cleaner way to do this. Maybe open a feature request?
From what I can tell, there are still a few minor details to be etched out in droplan (e.g. running as background service to avoid rewriting the rules every time, ...), but it seems to do its job reasonably well (been using it for roughly two months now
I'm not affiliated with the project (I only did a PR once involving the Dockerfile).
From what I can tell, there are still a few minor details to be etched out in droplan (e.g. running as background service to avoid rewriting the rules every time, ...), but it seems to do its job reasonably well (been using it for roughly two months now
I'm not affiliated with the project (I only did a PR once involving the Dockerfile).