On 9/5/20 1:18 PM, Laura García Liébana wrote:
On Fri, Sep 4, 2020 at 11:14 PM Daniel Borkmann <daniel@xxxxxxxxxxxxx> wrote:
[...]
Something like this seems more trivial to me:
table netdev mytable {
chain mychain {
type filter hook egress device "eth0" priority 100; policy drop;
meta protocol != 0x419C accept
}
}
Sure, different frontends, so what?! You could also wrap that code into a simple a.out or have nft style syntax jit to bpf ...
