Age | Commit message (Collapse) | Author |
|
so this new group can be used in inbound and outbound matcher
|
|
vyos@vyos# show firewall
+name foo {
+ rule 1 {
+ action accept
+ packet-length 100
+ packet-length 105
+ packet-length 200-300
+ packet-length 220-250
+ }
+}
will report a nftables error upon load: Error: conflicting intervals specified
With nftables 1.0.3 there is an "auto-merge" option which corrects this:
https://lwn.net/Articles/896732/
|
|
* Refactor nftables clean-up code
* Adds policy route test for using firewall groups
|
|
|
|
|