]> git.ipfire.org Git - thirdparty/nftables.git/commit
projects / thirdparty / nftables.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f92636d) | patch
evaluate: allow == and != in the new shortcut syntax to match for flags
authorPablo Neira Ayuso <pablo@netfilter.org>
Mon, 24 May 2021 19:54:36 +0000 (21:54 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Mon, 24 May 2021 20:16:13 +0000 (22:16 +0200)
commit3b4f35eee51884f581223188a71f84ef782eb726
tree64fe7fb4c0212bd1dd325e327989372ad2038dcetree
parentf92636da30ec96f45a2eeaac025714de968b586acommit | diff
evaluate: allow == and != in the new shortcut syntax to match for flags

The flags / mask syntax only allows for ==, !=  and the implicit
operation (which is == in this case).

 # nft add rule x y tcp flags ! syn / syn,ack
 Error: either == or != is allowed
 add rule x y tcp flags ! syn / syn,ack
              ^^^^^^^^^^^^^^^^^^^^^^^^^

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/evaluate.c diff | blob | blame | history
Mirror of git://git.netfilter.org/nftables