Arch Linux
linux 4.8.4-1
nftables-git 0.6.r96.gbb636b8-1
libnftnl-git 1.0.6.r68.gc26951e-1
/etc/nftables.conf
flush ruleset
define if_WAN = enp3s0
table ip private {
chain postroute {
type filter hook postrouting priority 0;
oifname $if_WAN ip daddr 192.168.0.0/16 reject
}
}
$ sudo nft -f /etc/nftables.conf
/etc/nftables.conf:4:1-2: Error: Could not process rule: No such file or directory
table ip private {
^^
I'm guessing that that error message is wildly off-base.
Or is "reject" not a proper "terminal statement"?
Or is there something wrong with the syntax?
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
