On 16.06, Pablo Neira Ayuso wrote:
> This patch adds support for the new 'netdev' table. So far, this table allows
> you to create filter chains from ingress.
>
> The following example shows a very simple base configuration with one table that
> contains a basechain that is attached to the 'eth0':
>
> # nft list table netdev filter
> table netdev filter {
> chain eth0-ingress {
> type filter hook ingress device eth0 priority 0; policy accept;
> }
> }
>
> You can test that this works by adding a simple rule with counters:
>
> # nft add rule netdev filter eth0-ingress counter
Looks fine. I'm thinking we might be able to simplify to grammar, but I'll simply
try once your patch is in the tree.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
