I refactor the patch based on your feedback, however: $ nft flush ruleset fails with: <cmdline>:1:1-13: Error: Could not process rule: Address family not supported by protocol flush ruleset ^^^^^^^^^^^^^ $ nft --version nftables v0.4 (Support Edward Snowden) $ uname -a Linux turingmachine 3.17.6-1-ARCH #1 SMP PREEMPT Sun Dec 7 23:43:32 UTC 2014 x86_64 GNU/Linux
Attachment:
pgpBfNAOIyNOR.pgp
Description: OpenPGP digital signature
