On Thu, Jun 30, 2022 at 08:31:14PM -0500, Peter Tirsek wrote: > On Thu, 30 Jun 2022, Daniel Gröber wrote: > > This works all fine and dandy when only one nftables.conf file is involved, > > but as soon as I have includes I need to deploy the entire config directory > > tree somewhere out-of-the-way. > > We're probably getting a little off topic for netfilter-devel, but could you > do this using a mount namespace? For example (as root, since you indicated > that you want to really load the actual ruleset into the main firewall): I considered that too, but it's kind of like slicing butter with a chainsaw :) --Daniel
