Hi, Here are the patches that refactors how rules are parsed. So now it's done in one unique place for all operations. And it adds a function to reset the counters with -Z since it's trivial to do so with such parsing strategy. Tomasz Bursztyka (5): nft: Parse fully and properly at once a rule into a cs nft: Refactor firewall printing so it reuses already parsed cs struct nft: Refactor rule deletion so it compares both cs structure xtables: nft: Complete refactoring on how rules are saved nft: Add a function to reset the counters of an existing rule iptables/nft-ipv4.c | 99 ++++----- iptables/nft-ipv6.c | 85 +++----- iptables/nft-shared.c | 267 ++++++++++++------------ iptables/nft-shared.h | 16 +- iptables/nft.c | 513 ++++++++++------------------------------------ iptables/nft.h | 5 +- iptables/xtables-events.c | 19 +- iptables/xtables.c | 15 +- 8 files changed, 342 insertions(+), 677 deletions(-) -- 1.8.3.2 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html