Re: How to have a counter for vmap verdicts?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Fri, 14 Jun 2024, at 8:15 PM, William N. wrote:
> Hi,
>
> I have this anonymous vmap:
>
> ct state vmap {                                                 
> 	invalid: drop,                                          
> 	established : continue,                                 
> 	related : continue                                      
> }
>
> Is there a way to have:
>
> - a counter for each individual verdict
> - a counter only for the drop
>
> but without jumps to other chains, shown in the wiki?

To do so requires nftables 1.0.8. See, also, https://marc.info/?l=netfilter&m=168933264008248&w=2 and https://wiki.nftables.org/wiki-nftables/index.php/List_of_updates_in_the_nft_command_line_tool.

-- 
Kerin Millar
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux