Thank you for your answer Kamil!
Under words "not valid" I mean this:
root@anvil:~# /usr/sbin/nft -f /etc/nftables.conf
/etc/nftables.conf:113:48-48: Error: syntax error, unexpected @
iifname $int_ifs ip daddr != { @stormwall, @akamai }
meta l4proto tcp redirect to :9051
^
root@anvil:~# vim /etc/nftables.conf
root@anvil:~# /usr/sbin/nft -f /etc/nftables.conf
/etc/nftables.conf:113:49-57: Error: unknown identifier 'stormwall'
iifname $int_ifs ip daddr != { $stormwall, $akamai }
meta l4proto tcp redirect to :9051
^^^^^^^^^
Your proposal:
iifname $int_ifs ip daddr != @akamai meta l4proto tcp redirect to :9051
Also does not work.
--
Talk is cheap, show me the code (c) Linus Torvalds
