diff options
Diffstat (limited to 'extensions/libxt_connlabel.txlate')
-rw-r--r-- | extensions/libxt_connlabel.txlate | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/extensions/libxt_connlabel.txlate b/extensions/libxt_connlabel.txlate new file mode 100644 index 00000000..5be42204 --- /dev/null +++ b/extensions/libxt_connlabel.txlate @@ -0,0 +1,5 @@ +iptables-translate -A INPUT -m connlabel --label bit40 +nft add rule ip filter INPUT ct label bit40 counter + +iptables-translate -A INPUT -m connlabel ! --label bit40 --set +nft add rule ip filter INPUT ct label set bit40 ct label and bit40 != bit40 counter |