To get it in sync with the existing kernel code.
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
};
#define NFTA_NAT_MAX (__NFTA_NAT_MAX - 1)
-enum nft_target_attributes {
- NFTA_TARGET_UNSPEC,
- NFTA_TARGET_NAME,
- NFTA_TARGET_REV,
- NFTA_TARGET_INFO,
- __NFTA_TARGET_MAX
-};
-#define NFTA_TARGET_MAX (__NFTA_TARGET_MAX - 1)
-
-enum nft_match_attributes {
- NFTA_MATCH_UNSPEC,
- NFTA_MATCH_NAME,
- NFTA_MATCH_REV,
- NFTA_MATCH_INFO,
- __NFTA_MATCH_MAX
-};
-#define NFTA_MATCH_MAX (__NFTA_MATCH_MAX - 1)
-
#endif /* _LINUX_NF_TABLES_H */
#ifndef _NFT_COMPAT_NFNETLINK_H_
#define _NFT_COMPAT_NFNETLINK_H_
+enum nft_target_flags {
+ NFT_TARGET_INVPROTO = (1 << 0),
+};
+
+enum nft_target_attributes {
+ NFTA_TARGET_UNSPEC,
+ NFTA_TARGET_NAME,
+ NFTA_TARGET_REV,
+ NFTA_TARGET_INFO,
+ NFTA_TARGET_PROTOCOL,
+ NFTA_TARGET_FLAGS,
+ __NFTA_TARGET_MAX
+};
+#define NFTA_TARGET_MAX (__NFTA_TARGET_MAX - 1)
+
+enum nft_match_flags {
+ NFT_MATCH_INVPROTO = (1 << 0),
+};
+
+enum nft_match_attributes {
+ NFTA_MATCH_UNSPEC,
+ NFTA_MATCH_NAME,
+ NFTA_MATCH_REV,
+ NFTA_MATCH_INFO,
+ NFTA_MATCH_PROTOCOL,
+ NFTA_MATCH_FLAGS,
+ __NFTA_MATCH_MAX
+};
+#define NFTA_MATCH_MAX (__NFTA_MATCH_MAX - 1)
+
#define NFT_COMPAT_NAME_MAX 32
enum {
#include <libmnl/libmnl.h>
#include <linux/netfilter/nf_tables.h>
+#include <linux/netfilter/nf_tables_compat.h>
#include <linux/netfilter/x_tables.h>
#include <libnftables/expr.h>
#include <libmnl/libmnl.h>
#include <linux/netfilter/nf_tables.h>
+#include <linux/netfilter/nf_tables_compat.h>
#include <linux/netfilter/x_tables.h>
#include <libnftables/expr.h>
projects / thirdparty / libnftnl.git / commitdiff
