>From https://bugzilla.netfilter.org/show_bug.cgi?id=1374: Listing an entire ruleset or a table with 'nft list ...' will also print all elements of all set definitions within the ruleset or requested table. Seeing the full set contents is not often necessary especially when requesting to see someone's ruleset for help and support purposes. It would be helpful if there was an option/flag for the nft tool to suppress set contents when listing. This patch series implements the request by adding a new option: `-t`, `--terse`. Since v2: * changed the short option for `--numeric-time` from `-t` to `-T`; * used a new option (`-t`, `--terse`) instead of extending `--stateless`. Since v1: * updated man-page and usage; * dropped 'dynamic' as a possible parameter-value. Jeremy Sowden (2): src: use `-T` as the short option for `--numeric-time`. src: add --terse to suppress output of set elements. doc/libnftables.adoc | 21 ++++++++++++--------- doc/nft.txt | 6 +++++- include/nftables.h | 5 +++++ include/nftables/libnftables.h | 1 + src/main.c | 15 ++++++++++++--- src/rule.c | 3 ++- 6 files changed, 37 insertions(+), 14 deletions(-) -- 2.23.0
