Hi, This series of patches introduces socket matching to nftables in a native way. As tproxy is the cause of introducing this functionality, this state is only capable of matching sockets with their transparent socket option set, but I think this can later be easily enhanced later to match other attributes or simply the existence or abscence of sockets. The nft part is already working, but I want to make some refinement on it before I submit it. It will probably come later today. Thanks to Florian for the great help with this task! Regards, Máté -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
