Skip to content
Commit 188b85e7 authored by Trevor Gamblin's avatar Trevor Gamblin Committed by Khem Raj
Browse files

nftables: upgrade 0.9.9 -> 1.0.0 

From the changelog (https://marc.info/?l=netfilter&m=162939459210790&w=2

):

- Catch-all set element support: This allows users to define the
  special wildcard set element for anything else not defined in
  the set
- Define variables from the command line through --define
- Allow to use stateful expressions in maps
- Add command to list the netfilter hooks pipeline for a given packet
  family. If device is specified, then ingress path is also included
- Allow to combine jhash, symhash and numgen expressions with the
  queue statement, to fan out packets to userspace queues via
  nfnetlink_queue
- Expand variable containing set into multiple mappings
- Allow to combine verdict maps with interval concatenations
- Simplify syntax for NAT mappings. You can specify an IP range, or a
  specific IP and port, or a combination of range of IP addresses and
  ports
- Bugfixes

Signed-off-by: default avatarTrevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: default avatarKhem Raj <raj.khem@gmail.com>
parent 84b22215
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment