path: root/iptables/nft.h
diff options
authorPablo Neira Ayuso <>2013-09-18 14:57:38 +0200
committerPablo Neira Ayuso <>2013-12-30 23:50:47 +0100
commitc6836c19592dbe1a8be9b0ad76c0ae09abcb82e7 (patch)
tree2c55030fb02a9a7fefe62dbebdf6626ce4be11ba /iptables/nft.h
parente2a2c72277b49ac611809b3978365ab3010e1597 (diff)
nft: consolidate nft_rule_new to support ARP
This patch removes nft_arp_rule_new, which almost a copy and paste of the original nft_rule_new. This patch generalizes the infrastructure to support ARP. Signed-off-by: Pablo Neira Ayuso <>
Diffstat (limited to 'iptables/nft.h')
1 files changed, 2 insertions, 0 deletions
diff --git a/iptables/nft.h b/iptables/nft.h
index 09d3e0c5..8ddde48d 100644
--- a/iptables/nft.h
+++ b/iptables/nft.h
@@ -100,8 +100,10 @@ void nft_rule_list_destroy(struct nft_rule_list *list);
int add_counters(struct nft_rule *r, uint64_t packets, uint64_t bytes);
int add_verdict(struct nft_rule *r, int verdict);
+int add_match(struct nft_rule *r, struct xt_entry_match *m);
int add_target(struct nft_rule *r, struct xt_entry_target *t);
int add_jumpto(struct nft_rule *r, const char *name, int verdict);
+int add_action(struct nft_rule *r, struct iptables_command_state *cs, int ip_flags);
enum nft_rule_print {