Re: nftables 0.9.3, sets with concatentation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 2020/03/20 12:41, Frank Myhr wrote:


set s4_MISC-SERVICES {
           type ipv4_addr . inet_proto . inet_service
           elements = { $IP4_IF2 . udp . 69, $IP4_IF2 . tcp . 23 ]
Argh! Use a curly brace at the end rather than square bracket, obviously. ;-p 



meta l4proto {tcp, udp} \
     ip daddr . meta l4proto . th dport @s4_MISC-SERVICES   accept


Or, you may well want to handle ipv4 addresses in a separate set:

set s4_MISC-SERV2 {
     type inet_proto . inet_service
           elements = { udp . 69, tcp . 23 ]


Same here.



set ip_allowed {
     type ipv4_addr
     elements = { $IP4_IF2 }


Add missing end brace }.


Sorry for the typos!

-F
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux