Pablo Neira Ayuso <pablo@xxxxxxxxxxxxx> wrote: > BTW, do we really want to use the default NFNLGRP_NFTABLES group? > > multicast group provide a simple way for filtering out what you don't > need from kernelspace. And you can still subscribe both groups > NFNLGRP_NFTABLES and NFNLGRP_NFTABLES_TRACE. > > I'm telling this when thinking of nft-sync. Why should it be receiving > this spamming tracing events when it only cares about ruleset updates? I can add a new group but nftables will need to subscribe to both in trace mode since we need to see new rules... -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
