diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-12-06 10:24:20 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2013-12-06 13:00:27 +0100 |
commit | 2eb1c30d55f1433e11275f85a97d3694188ecc40 (patch) | |
tree | e951942b4ab3a508ac64e3102ad767f9c44cdd88 /src/mnl.c | |
parent | b920d059008e037900b879aad7f1a5517591cb7e (diff) |
src: fix rule flushing atomically
nft is currently retrieving the list of rule from the kernel, then
deleting each rule one by one. This is slow and not safe. Fix it
by sending a deletion command in a batch without specifying the
chain.
This change requires the kernel fix entitled:
netfilter: nf_tables: fix missing rules flushing per table
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'src/mnl.c')
0 files changed, 0 insertions, 0 deletions