On Tue, Oct 01, 2013 at 11:46:38AM +0200, Arturo Borrero Gonzalez wrote:
> On 1 October 2013 11:38, Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote:
> > On Tue, Oct 01, 2013 at 12:33:18AM +0200, Arturo Borrero Gonzalez wrote:
> >> This patch adds a low level ruleset API for libnftables.
> >
> > Applied, thanks Arturo.
> >
> > BTW, any plan to send me example files?
>
> It seem I can't dump sets with af NFPROTO_UNSPEC.
>
> I'm looking nf_tables_api.c wondering how difficult is to implement it.
>
> In nf_tables_dump_sets_all(), I think we need to iterate afs like in
> dump_tables(), ie:
>
> list_for_each_entry(afi, &net->nft.af_info, list) {
> if (family != NFPROTO_UNSPEC && family != afi->family)
> continue;
> [...]
That's on the right track. Let me know if you want to send me a kernel
patch for it.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
