While iptables does not support his NOP, arptables man page claims it does (although legacy arptables rejects it) and ebtables prefers to print it instead of omitting the '-j' option. Accept and ignore the target when parsing to at least fix for arptables-nft and prepare for ebtables-nft using do_parse() as well. Signed-off-by: Phil Sutter <phil@xxxxxx> --- iptables/xshared.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/iptables/xshared.c b/iptables/xshared.c index c4d7a266fed5e..1b02f35a9de3a 100644 --- a/iptables/xshared.c +++ b/iptables/xshared.c @@ -1634,7 +1634,8 @@ void do_parse(int argc, char *argv[], case 'j': set_option(&cs->options, OPT_JUMP, &args->invflags, invert); - command_jump(cs, optarg); + if (strcmp(optarg, "CONTINUE")) + command_jump(cs, optarg); break; case 'i': -- 2.41.0
