On 11 August 2014 12:25, Albert K <alberk@xxxxxxxxx> wrote:
> Hi,
>
> I am trying out nftables and at a loss on how to achieve the following
> iptables systax. I have eth0 and eth1 in bridge mode and classifying
> traffic to a TC classid. Any help would be appreciated. Thank you.
>
> iptables -t mangle -A POSTROUTING -p tcp -m multiport --sports
> 80,443,8080 -m physdev --physdev-out eth0 -j CLASSIFY --set-class 1:2
>
We have support in kernel space,
Try something like:
nft add table mangle
nft add chain postrouting {type route hook output priority -150\; }
nft add rule mangle postrouting tcp sport {80,443,8080} meta priority set XXX
It would be nice if you come back to share your experience, and/or
report bugs if any.
regards.
--
Arturo Borrero González
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
