On Thu, Oct 19, 2017 at 01:18:12PM +0200, Florian Westphal wrote: > Registering implicit nat hook, making iptables_nat and nftables nat > at the same time impossible (reject from kernel) etc. is more > convenient as we cannot break existing setups and only prevent > configuring a non-working/broken state rather than allowing things > that do not work at the moment. Yes, let's tighten things now, we can relax them later. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
