nft doesn't have the context to translate "dns" or "http" as being
service names here.
Signed-off-by: Florian Westphal <fw@strlen.de>
.Matching destination port of both UDP and TCP
----------------------------------------------
-inet filter input meta l4proto {tcp, udp} @th,16,16 { dns, http }
+inet filter input meta l4proto {tcp, udp} @th,16,16 { 53, 80 }
-----------------------------------------------------------------
.Rewrite arp packet target hardware address if target protocol address matches a given address