]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f3e897) | patch
src: support for restoring element counters
authorPablo Neira Ayuso <pablo@netfilter.org>
Wed, 11 Mar 2020 12:00:01 +0000 (13:00 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 18 Mar 2020 18:10:02 +0000 (19:10 +0100)
commit1fe6089ddd87ee7869d24c0f8849951220cc9b85
tree5d46d6d74efac46d27e0605c1b50cb7ac08620dbtree
parent3f3e897f429659ff6c8387245d0d4115952a6c31commit | diff
src: support for restoring element counters

This patch allows you to restore counters in dynamic sets:

 table ip test {
        set test {
                type ipv4_addr
                size 65535
                flags dynamic,timeout
                timeout 30d
                gc-interval 1d
                elements = { 192.168.10.13 expires 19d23h52m27s576ms counter packets 51 bytes 17265 }
        }
        chain output {
                type filter hook output priority 0;
                update @test { ip saddr }
        }
 }

You can also add counters to elements from the control place, ie.

 table ip test {
        set test {
                type ipv4_addr
                size 65535
                elements = { 192.168.2.1 counter packets 75 bytes 19043 }
        }

        chain output {
                type filter hook output priority filter; policy accept;
                ip daddr @test
        }
 }

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/netlink.h diff | blob | blame | history
src/netlink.c diff | blob | blame | history
src/netlink_linearize.c diff | blob | blame | history
src/parser_bison.y diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables