On Wednesday 2015-11-25 17:53, Patrick McHardy wrote: >> >> What I think is a doable way is to output the rule in evaluation order - >> basically, the way it was input. >> If the IP TTL is not that important, perhaps that expression should >> have been moved "to the back" when the rule was generated by the >> userspace tool before being entered into the kernel. > >Its a decoded packet dump, not the rule. Would it be possible to make the program which receives the trace over netlink to take a command-line argument or a filename that specifies which expressions to preferentially order to the left? Something like trace --fields=ip.saddr,ip.daddr,tcp.dport,ip.ttl,* (the ,* part being implicit if omitted) -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
