Hi Harsha,
I would suggest you start with a more simple task:
Probably you can add one test for named objects to our tests/shell/
directory under nftables.git tree.
I'm attaching a couple of examples. Please, have a look at
nft/tests/shell/ directory.
Thanks.
table ip filter {
limit http-traffic {
rate 1/second
}
chain input {
type filter hook input priority 0; policy accept;
limit name tcp dport map { 80 : "http-traffic", 443 : "http-traffic"}
}
}
table ip x {
counter user123 {
packets 12 bytes 1433
}
quota user123 {
over 2000 bytes
}
quota user124 {
over 2000 bytes
}
set y {
type ipv4_addr
}
map test {
type ipv4_addr : quota
elements = { 192.168.2.2 : "user124", 192.168.2.3 : "user124"}
}
chain y {
type filter hook input priority 0; policy accept;
counter name ip saddr map { 192.168.2.2 : "user123", 1.1.1.1 : "user123", 2.2.2.2 : "user123"}
quota name ip saddr map @test drop
}
}
