Jeremy Sowden <jeremy@xxxxxxxxxx> wrote: > Pablo, comparing the x_tables and nftables connmark implementations I > see that nftables doesn't support all the bit-twiddling that x_tables > does. Why is this? Was it not wanted or has it just not been imple- > mented? The latter. It would be needed to extend nft_bitwise.c to accept a second register value and extend nft userspace to accept non-immediate values as second operand.
