On 2 November 2016 at 11:30, Leon Merten Lohse <leon@xxxxxxxxxxxxx> wrote: > I would really appreciate if someone could comment on this. > > The problem is that nft complains about overlapping intervals in the > set, if I load the following ruleset twice. > This occurs even though there is a `flush ruleset' directive at the > beginning of the ruleset. As far as I understand it, all sets should be > empty after that. > Calling `nft flush ruleset' beforehand works around this but is no > longer atomic. > Yes, this is probably some bug in the nft cache. Will send a testcase so we don't forget about fixing this. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
