On Mon, Nov 02, 2020 at 02:49:38PM +0100, Pablo Neira Ayuso wrote: > libnetfilter_conntrack already prints these new offload status bits, > which is sufficient. Revert the status parser changes that allow to set > on these bits from ctnetlink since this is not supported. Scratch this. Parser is still useful for the filter, ie. conntrack -L --status OFFLOAD I'll explore a patch to disallow updating these bits from -U instead.
