Small fixes here and there in patch 1, 2 and 3
patch 4, 5, and 6 propose a way to translate iptables matches/targets blob (when needed) into
nftables expressions list. (thus it requires the expression list functions in libnftables)
Tomasz Bursztyka (6):
xtables: initialize xtables defaults even on listing rules
xtables: destroy list iterator relevantly
xtables: policy can be changed only on builtin chain
xtables: Add support for translating xtables target into nft expressions
xtables: add support for translating xtables matches into nft
expressions
xtables: add suport for DNAT rule translation to nft extensions
configure.ac | 7 +++
extensions/GNUmakefile.in | 2 +-
extensions/libipt_DNAT.c | 135 ++++++++++++++++++++++++++++++++++++++++++----
include/xtables.h.in | 8 +++
iptables/nft.c | 71 +++++++++++++++---------
5 files changed, 186 insertions(+), 37 deletions(-)
--
1.8.2.1
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
