search for: tad1073

...catenations Literal sets Product: nftables Version: unspecified Hardware: x86_64 OS: other Status: NEW Severity: normal Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: tad1073 at gmail.com inet.nft:97:44-51: Error: syntax error, unexpected protocol iif $int_if0 ip6 saddr . ip6 daddr . ip6 protocol { $g6dns . $myip_v6 . tcp, $g6dns . $myip_v6 . udp } jump global_dns_in ^^^^^^^^ -- You are receiving this mail beca...

...quot;meta's" Product: nftables Version: unspecified Hardware: x86_64 OS: All Status: NEW Severity: enhancement Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: tad1073 at gmail.com #!/usr/bin/nftables -f define g6dns = { 2001:4860:4860::8888, 2001:4860:4860::8844 } define o4dns = { 208.67.222.222, 208.67.220.220 } define o6dns = { 2620:119:35::35, 2620:119:53::53 } define myIPv4 = <filtered> define myIPv6 = <filtered> flush ruleset table inet filt...

https://bugzilla.netfilter.org/show_bug.cgi?id=1380 Bug ID: 1380 Summary: please enable adding networks to named set Product: nftables Version: unspecified Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 Component: nft Assignee: pablo at netfilter.org

https://bugzilla.netfilter.org/show_bug.cgi?id=1255 Bug ID: 1255 Summary: nftables SNAT is not working Product: nftables Version: unspecified Hardware: All OS: All Status: NEW Severity: critical Priority: P5 Component: kernel Assignee: pablo at netfilter.org

...iptables-restore-translate Product: nftables Version: unspecified Hardware: x86_64 OS: All Status: NEW Severity: normal Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: tad1073 at gmail.com Created attachment 571 --> https://bugzilla.netfilter.org/attachment.cgi?id=571&action=edit Untranslatable Rules There are some rules could not be translated and I don't know enough about nftables to translate them by hand, could I get some help with those rules? # -t m...

...What am I doing wrong!? Product: nftables Version: unspecified Hardware: x86_64 OS: other Status: NEW Severity: normal Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: tad1073 at gmail.com code snippet table inet nat { chain prerouting { type nat hook prerouting priority dstnat; policy accept; fib saddr . iif oif 0 counter drop fib saddr . iif oif "lo" counter accept fib saddr . iif oif "$inet_if" counter accept...

https://bugzilla.netfilter.org/show_bug.cgi?id=1358 Bug ID: 1358 Summary: Error when atomically replacing rules with symbolic variables Product: nftables Version: unspecified Hardware: x86_64 OS: other Status: NEW Severity: blocker Priority: P5 Component: nft

...m nftables man page Product: nftables Version: unspecified Hardware: x86_64 OS: other Status: NEW Severity: enhancement Priority: P5 Component: nft Assignee: pablo at netfilter.org Reporter: tad1073 at gmail.com [~/.nftables>]$ nftar inet filter input tcp flags syn tcp dport ssh meter flood { ip saddr timeout 10s limit rate over 10/second } add @blackhole { ip saddr timeout 1m } drop nftar is an alias in my .bashrc for sudo nft add rule [~/.nftables>]$ nft list meter inet filter flood...