Phil Sutter <phil@xxxxxx> wrote: > Hi Karuna, > > On Thu, Mar 21, 2019 at 11:57:15AM +0530, Karuna Grewal wrote: > > I'm trying to implement "deletion of set elements in ruleset". For > > which I wanted to understand the way existing set operations are > > implemented. > > What are you trying to achieve? Anonymous sets are immutable by design. > If you want to add/delete set elements, you can create a named set and > reference that from rules. See nftables wiki[1] for examples of usage. This is about deletion of elements from the packet path in dynamic sets, see https://people.netfilter.org/pablo/nf-ideas-2019.txt, 1.4 .
