Hello, I am running nftables 0.9.3 on Debian 10. Behind the Linux router, I have multiple clients, mostly Windows. Some of them would like to run an application such as Torrent but I'd like to limit the time that can happen. Ideally, I'd like use use a set within the nat table and have the access automatically expire after 4 hours. I have hit a brick wall and I don't see a straightforward way to do this since each nat entry needs a destination IP, inbound port, and destination port, yet set's only have a single one of those entries. I was leaning toward using a set because that's the only entry type that has automatic timeouts as far as I can tell. Is there a simple way to achieve this, or am I stuck manually adding rules and coming back later to manually delete them? Thank you! -MikeD
