Hi, A few xt targets do check that the match condition is correct for them. xt_TCPMSS is one of them. Since nft_compat does not (and probably can not) pass the match condition into the target check, the target check will fail. So all xt targets that perform checks on their match conditions are unusable with nft_compat. Is this expected behavior or a bug? Andreas -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
