Dear Mr. Cochran, even if your document looks good, I am looking for some documentation related to nftables - iptables is NO option because I want to implement a kernel module for nftables doing that. The problem is, that there is a wiki how to use it, but there is no information how to extend it: https://wiki.nftables.org/wiki-nftables/index.php/Main_Page Kind regards Fabian Franz Am 2017-02-15 um 17:44 schrieb Bob Cochran: > If you don't mind using iptables/Xtables instead: > http://inai.de/documents/Netfilter_Modules.pdf > > > > On 02/15/2017 08:59 AM, Fabian Franz wrote: >> Hi there, >> >> is there some documentation available how to create a custom match for a >> firewall rule (nftables). >> >> What I want to create is a custom match which will query a user space >> application, if the packet is allowed (returning a bool value)? >> >> Kind regards >> >> Fabian Franz >> >> -- >> To unsubscribe from this list: send the line "unsubscribe >> netfilter-devel" in >> the body of a message to majordomo@xxxxxxxxxxxxxxx >> More majordomo info at http://vger.kernel.org/majordomo-info.html >> > -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
