On Sun, Feb 14, 2016 at 07:55:00PM +0530, Shivani Bhardwaj wrote: > Add translation for match tos to nftables. > > Examples: > > $ sudo iptables-translate -A INPUT -m tos --tos 0x02 -j ACCEPT > nft add rule ip filter INPUT ip tos 0x02 counter accept > > $ sudo iptables-translate -A INPUT -m tos --tos 0x02/0x04 -j ACCEPT > nft add rule ip filter INPUT ip tos and 0x02 == 0x04 counter accept > > $ sudo iptables-translate -A INPUT -m tos ! --tos 0x02/0x04 -j ACCEPT > nft add rule ip filter INPUT ip tos and 0x02 != 0x04 counter accept > > Details: > This patch was sent by Ana, Shivani modified it as per the current > nftables structure, applied it to the latest branch and tested it. we're going to get rid of tos in nft soon since dscp supersedes it and it is not compatible with is, so we won't be supporting this. So please document this on the wiki. Thanks. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
