Hi, On Fri, Nov 17, 2023 at 03:40:09PM +0100, Sixene wrote: > Hi, > I hope this is the right channel to reach out for support, the wiki > mentioned this mailing list. > I'm having trouble optimizing my large ruleset of 26000+ lines. > When I run 'nft -c -o -f ruleset.nft', after the while processes, I > get the following error: > nft: optimize.c:423: merge_verdict_stmts: Assertion `0' failed. > Aborted (core dumped) Please, make sure you you run on latest nftables version. > My ruleset mostly consists of just 'ip saddr x.x.x.x/xx counter > packets 0 bytes 0 drop' > Hope you can help, as I'm facing very bad performance with this list, > however I have no choice because I need to block all of these > addresses. Please, send a simple reproducer. Thanks.
