Hi! The Netfilter project proudly presents: nftables 0.9.0 This release contains fixes and following 'future features' that will be available with upcoming 4.18 kernel: - support to check if packet matches an existing socket. This work is done as part of the "Summer of code" program and is preparation work for upcoming TPROXY support in nftables. - support to limit number of active connections by arbitrary criteria, such as ip addresses, networks, conntrack zones or any combination thereof. - add support for 'audit' logging. See ChangeLog that comes attached to this email for more details. You can download it from: http://www.netfilter.org/projects/nftables/downloads.html#nftables-0.9.0 ftp://ftp.netfilter.org/pub/nftables/ To build the code, libnftnl 1.1.1 and libmnl >= 1.0.3 are required: * http://netfilter.org/projects/libnftnl/index.html * http://netfilter.org/projects/libmnl/index.html Visit our wikipage for user documentation at: * http://wiki.nftables.org For the manpage reference, check man(8) nft. In case of bugs and feature request, file them via: * https://bugzilla.netfilter.org Happy firewalling!
Attachment:
changelog-0.9.0.txt.gz
Description: application/gzip