search for: matching_packet_header_field

...EW Severity: minor Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: 1000.ontheroad at gmail.com Official nftables "wiki", on the Matching-packet-header-fields section (https://wiki.nftables.org/wiki-nftables/index.php/Matching_packet_header_fields), suggests the following example to match packets with flags SYN and ACK set: % nft -i nft> add rule filter output tcp flags & (syn | ack) == (syn | ack) counter log When putting it into practice, it fails: <cli>:1:51-51: Error: syntax error, unexpected '(' add rule filter...