On Fri, Aug 03, 2018 at 05:56:12PM +0200, Florian Westphal wrote: > connection tracking zones currently depend on the xtables CT target. > The reasoning was that it makes no sense to support zones if they can't > be configured (which needed CT target). > > Nowadays zones can also be used by OVS and configured via nftables, > so remove the dependency. > > connection tracking labels are handled via hidden dependency that gets > auto-selected by the connlabel match. > Make it a visible knob, as labels can be attached via ctnetlink > or via nftables rules (nft_ct expression) too. > > This allows to use conntrack labels and zones with nftables-only build. Applied, thanks Florian! -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
