On Thu, Sep 30, 2021 at 06:34:52PM +0100, G.W. Haywood wrote: > Hi there, > > On Thu, 30 Sep 2021, Cristian Constantin wrote: > > > ... reading large packets over netlink sockets just to count the > > elements in the sets does not seem very efficient. > > Agreed. > > It seems to me that if you need to read what you've put in the sets > for the purposes of some facility, then you need to store it in RAM. > > It doesn't make sense to me to try to use netfilter as a kind of RAM; > as you say that will be very inefficient. Exposing the number of set elements is feasible and it sounds useful too.
