On 14.04, Thomas Graf wrote: > On 04/13/15 at 09:19pm, Patrick McHardy wrote: > > Now the advantages of being able to use nft. First, the obvious > > one is that we have a nice userspace tool, a well defined > > grammar, and that people would be able to use the same tool for > > very similar tasks. nftables in the kernel is almost completely > > lockless, we support way more possibilites already and we won't > > have to add new special case TC actions anymore. Look at the > > connmark action for example. It can set a value. How long until > > someone wants to use a bitmask? We support all operations > > (assignment, bit operations) for all types, we have sets for fast > > lookups, maps for associating values quickly, we have a nice and > > readable syntax and full translation back to the readable > > representation and much more. > > *cough* Performance numbers? *cough* ;-) I'm just arguing, not implementing :) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
