diff options
author | Álvaro Neira Ayuso <alvaroneay@gmail.com> | 2014-05-28 12:08:22 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2014-06-05 16:55:01 +0200 |
commit | c000b14c35bf7722225a334ea3461976e78561dd (patch) | |
tree | bd7623b217aafd44c44372e9621fc6f69741bbe9 /include/rule.h | |
parent | 0c512cf7f26363713b8c76a6a826e2401e21907f (diff) |
netlink: Allow to invert the ranges
This patch fix the bug:
http://bugzilla.netfilter.org/show_bug.cgi?id=924
Before, nftables doesn't permit invert ranges. This patch allows
add rules like this:
nft add rule ip test input ip daddr != 192.168.1.2-192.168.1.55
or
nft add rule ip test input ip daddr == 192.168.1.2-192.168.1.55
Also, we still have the option for adding rules like this:
sudo nft add rule ip test output frag id 33-45
Signed-off-by: Alvaro Neira Ayuso <alvaroneay@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/rule.h')
0 files changed, 0 insertions, 0 deletions