Displaying 20 results from an estimated 6000 matches similar to: "[Bug 1377] New: set timeout > 23d"
2018 Apr 27
5
[Bug 1249] New: set update with timeout 0s removes timeout
https://bugzilla.netfilter.org/show_bug.cgi?id=1249
Bug ID: 1249
Summary: set update with timeout 0s removes timeout
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: minor
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
2020 Jan 30
2
[Bug 1402] New: Race errors with nft
https://bugzilla.netfilter.org/show_bug.cgi?id=1402
Bug ID: 1402
Summary: Race errors with nft
Product: nftables
Version: unspecified
Hardware: All
OS: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
2024 Feb 13
16
[Bug 1736] New: nftables - dynamic update for verdict map from the packet path
https://bugzilla.netfilter.org/show_bug.cgi?id=1736
Bug ID: 1736
Summary: nftables - dynamic update for verdict map from the
packet path
Product: nftables
Version: 1.0.x
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
2015 Sep 17
0
[ANNOUNCE] nftables 0.5 release
Hi!
The Netfilter project proudly presents:
nftables 0.5
This release contains bug fixes and new features contained up to the
4.2 kernel release.
New features
============
* Concatenations: You can combine two or more selectors to build a
tuple, then use it to look up for a matching in sets, eg.
% nft add rule ip filter input ip saddr . tcp dport { \
1.1.1.1 . 22 , \
2018 Oct 16
7
[Bug 1282] New: SIGSEGV on loading tables
https://bugzilla.netfilter.org/show_bug.cgi?id=1282
Bug ID: 1282
Summary: SIGSEGV on loading tables
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Ubuntu
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter:
2016 Jun 02
0
[ANNOUNCE] nftables 0.6 release
Hi!
The Netfilter project proudly presents:
nftables 0.6
This release contains many accumulated bug fixes and new features
availale up to the Linux 4.7-rc1 kernel release.
New features
============
* Rule replacement: You can replace any rule from the unique 64-bits
handle. You have to retrieve the handle from the ruleset listing.
# nft list ruleset -a
table ip filter {
chain
2020 Apr 01
0
[ANNOUNCE] nftables 0.9.4 release
Hi!
The Netfilter project proudly presents:
nftables 0.9.4
This release contains fixes and new features available up to the Linux
kernel 5.6 release.
* Support for ranges in concatenations (requires Linux kernel >= 5.6),
e.g.
table ip foo {
set whitelist {
type ipv4_addr . ipv4_addr . inet_service
flags interval
2016 Dec 20
0
[ANNOUNCE] nftables 0.7 release
Hi!
The Netfilter project proudly presents:
nftables 0.7
This release contains many accumulated bug fixes and new features
available up to the (upcoming) Linux 4.10-rc1 kernel release.
* Facilitate migration from iptables to nftables:
At compilation time, you have to pass this option.
# ./configure --with-xtables
And libxtables needs to be installed in your system. This allows
2015 Jan 08
1
[Bug 994] New: Named sets with type "ipv4_addr" do not allow adding CIDR elements
https://bugzilla.netfilter.org/show_bug.cgi?id=994
Bug ID: 994
Summary: Named sets with type "ipv4_addr" do not allow adding
CIDR elements
Product: nftables
Version: unspecified
Hardware: x86_64
OS: other
Status: NEW
Severity: enhancement
Priority: P5
2020 Oct 26
3
[Bug 1477] New: Unable to use saved ruleset when using dynamic sets
https://bugzilla.netfilter.org/show_bug.cgi?id=1477
Bug ID: 1477
Summary: Unable to use saved ruleset when using dynamic sets
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at
2019 Mar 24
3
[Bug 1327] New: Cannot use named set for matching IPv4 networks
https://bugzilla.netfilter.org/show_bug.cgi?id=1327
Bug ID: 1327
Summary: Cannot use named set for matching IPv4 networks
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Debian GNU/Linux
Status: NEW
Severity: major
Priority: P5
Component: nft
Assignee: pablo at
2017 Oct 12
0
[ANNOUNCE] nftables 0.8 release
Hi!
The Netfilter project proudly presents:
nftables 0.8
This release contains new features available up to the (upcoming)
Linux 4.14 kernel release:
* Support for stateful objects, these objects are uniquely identified by
a user-defined name, you can refer to them from rules, and there is a
well established interface to operate with them, eg.
# nft add counter filter test
2018 Dec 03
2
[Bug 1307] New: Implement interface for 'ipv4_addr' in arptables
https://bugzilla.netfilter.org/show_bug.cgi?id=1307
Bug ID: 1307
Summary: Implement interface for 'ipv4_addr' in arptables
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
Assignee: pablo at
2016 Oct 28
2
[Bug 1096] New: Kernel oops when inserting an element into a map
https://bugzilla.netfilter.org/show_bug.cgi?id=1096
Bug ID: 1096
Summary: Kernel oops when inserting an element into a map
Product: nftables
Version: unspecified
Hardware: x86_64
OS: other
Status: NEW
Severity: critical
Priority: P5
Component: kernel
Assignee: pablo at
2020 Feb 28
3
[Bug 1411] New: add elements with counter to dynamic sets with
https://bugzilla.netfilter.org/show_bug.cgi?id=1411
Bug ID: 1411
Summary: add elements with counter to dynamic sets with
Product: nftables
Version: unspecified
Hardware: x86_64
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: nft
Assignee: pablo at
2018 Jan 16
0
[ANNOUNCE] nftables 0.8.1 release
Hi!
The Netfilter project proudly presents:
nftables 0.8.1
This release contains mostly incremental fixes and documentation
updates, such as fixing up ./configure --with-mini-gmp for embedded
setups that don't have libgmp.
Deprecated syntax
=================
This release deprecates the "flow table" syntax in favor of "meter" to
address Netfilter's bugzilla
2019 Mar 30
4
[Bug 1330] New: Parse error for importing set with netmask
https://bugzilla.netfilter.org/show_bug.cgi?id=1330
Bug ID: 1330
Summary: Parse error for importing set with netmask
Product: nftables
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: major
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
2019 Mar 08
3
[Bug 1326] New: `nft list' is very slow when output contains meters that has lots of elements
https://bugzilla.netfilter.org/show_bug.cgi?id=1326
Bug ID: 1326
Summary: `nft list' is very slow when output contains meters
that has lots of elements
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Debian GNU/Linux
Status: NEW
Severity: normal
Priority: P5
2020 Oct 27
0
[ANNOUNCE] nftables 0.9.7 release
Hi!
The Netfilter project proudly presents:
nftables 0.9.7
This release contains fixes and new features available up to the Linux
kernel 5.10-rc1 release.
* Support for implicit chain, e.g.
table inet x {
chain y {
type filter hook input priority 0;
tcp dport 22 jump {
ip saddr { 127.0.0.0/8, 172.23.0.0/16, 192.168.13.0/24 }
2020 Aug 27
0
[Bug 1455] New: Queue verdict cannot be used in vmap
https://bugzilla.netfilter.org/show_bug.cgi?id=1455
Bug ID: 1455
Summary: Queue verdict cannot be used in vmap
Product: nftables
Version: unspecified
Hardware: arm
OS: Ubuntu
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org