netfilter: nf_tables: flow offload expression
Add new instruction for the nf_tables VM that allows us to specify what
flows are offloaded into a given flow table via name. This new
instruction creates the flow entry and adds it to the flow table.
Only established flows, ie. we have seen traffic in both directions, are
added to the flow table. You can still decide to offload entries at a
later stage via packet counting or checking the ct status in case you
want to offload assured conntracks.
This new extension depends on the conntrack subsystem.
Signed-off-by: 
Pablo Neira Ayuso <pablo@netfilter.org>
parent
7c23b629
-
mentioned in commit a02c676c
-
mentioned in commit f30dade2
-
mentioned in commit d0009eff
-
mentioned in commit 67ee3736
-
mentioned in commit 9e0f0430
-
mentioned in commit 4c167af9
-
mentioned in commit 012df107
-
mentioned in commit 558b00a3
-
mentioned in commit 670548c8
-
mentioned in commit a5bbd579
Please register or sign in to comment