diff options
author | Eric Leblond <eric@regit.org> | 2013-07-06 17:33:57 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-07-19 17:48:11 +0200 |
commit | df84fdeb32c7a76388dd456a835b5f29e0c9caa1 (patch) | |
tree | d8d913a8b4c2fe36d91bedaf49f4891be5b1d2fb /src/mnl.c | |
parent | 4f6c75e40ac8898feaa5ca39f7934268a7f7796a (diff) |
src: Add support for insertion inside rule list
This patch adds support to insert and to add rule using a rule
handle as reference. The rule handle syntax has an new optional
position field which take a handle as argument.
Two examples:
nft add rule filter output position 5 ip daddr 1.2.3.1 drop
nft insert rule filter output position 5 ip daddr 1.2.3.1 drop
Signed-off-by: Eric Leblond <eric@regit.org>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/mnl.c')
-rw-r--r-- | src/mnl.c | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -61,7 +61,7 @@ int mnl_nft_rule_add(struct mnl_socket *nf_sock, struct nft_rule *nlr, nlh = nft_table_nlmsg_build_hdr(buf, NFT_MSG_NEWRULE, nft_rule_attr_get_u32(nlr, NFT_RULE_ATTR_FAMILY), - NLM_F_APPEND|NLM_F_ACK|NLM_F_CREATE, seq); + flags|NLM_F_ACK|NLM_F_CREATE, seq); nft_rule_nlmsg_build_payload(nlh, nlr); return mnl_talk(nf_sock, nlh, nlh->nlmsg_len, NULL, NULL); |