]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a8018ea) | patch
src: expose table flags
authorPablo Neira Ayuso <pablo@netfilter.org>
Thu, 12 Mar 2015 14:15:14 +0000 (15:15 +0100)
committerPablo Neira Ayuso <pablo@netfilter.org>
Tue, 17 Mar 2015 16:26:03 +0000 (17:26 +0100)
commitac3a68fb768b7f0e20493038139faa4704dc1846
tree1a9010abd009fd6631579b2278a7d2abffa58142tree
parenta8018eaf35636ac7fc26387f84b4b978db14546fcommit | diff
src: expose table flags

The nf_tables kernel API provides a way to disable a table using the
dormant flag. This patch adds the missing code to expose this feature
through nft.

Basically, if you want to disable a table and all its chains from seen
any traffic, you have to type:

 nft add table filter { flags dormant\; }

to re-enable the table, you have to:

 nft add table filter

this clears the flags.

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
include/netlink.h diff | blob | blame | history
include/rule.h diff | blob | blame | history
src/mnl.c diff | blob | blame | history
src/netlink.c diff | blob | blame | history
src/parser_bison.y diff | blob | blame | history
src/rule.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables