Hello, Iptables had the facility of deleting a rule using the same attribute set as that which were used during its addition. In nftables, the deletion operation requires the "handle" parameter which is a numeric value assigned by the kernel. In order to get the "handle" corresponding to a rule, it is necessary to list the chain with necessary option or dump the rules and implement a parser to get the same. Any application using nftables to implement a firewall shall not be able to refer to the table every time when it needs to delete a rule. Is there any facility to get the handle (at this moment with the available version of nftables) without referring the table. The wiki page states that the deletion operation based on attributes is under implementation. If so, is there any time frame by which we can expect the support for the same in nftables library. Request you to please respond to the same. -Thanks & Regards Abhjit -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
