git.ipfire.org Git - thirdparty/iptables.git/commit

author	Pablo M. Bermudo Garay <pablombg@gmail.com>
	Fri, 26 Aug 2016 16:58:43 +0000 (18:58 +0200)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Fri, 26 Aug 2016 17:35:33 +0000 (19:35 +0200)
commit	4b791044cd0984c9a1771e86fa77fce9d309d9e7
tree	ab14cc4444f772d76b8d1de7f712a5a32168e51b	tree
parent	27579fe10473c475f3e4dcf66c862f3a69995ea7	commit \| diff

xtables-compat: check if nft ruleset is compatible

This patch adds a verification of the compatibility between the nft
ruleset and iptables. Nft tables, chains and rules are checked to be
compatible with iptables. If something is not compatible, the execution
stops and an error message is displayed to the user.

This checking is triggered by xtables-compat -L and xtables-compat-save
commands.

Signed-off-by: Pablo M. Bermudo Garay <pablombg@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>

iptables/nft.c		diff \| blob \| blame \| history
iptables/nft.h		diff \| blob \| blame \| history
iptables/xtables-save.c		diff \| blob \| blame \| history
iptables/xtables.c		diff \| blob \| blame \| history