path: root/include/rule.h
authorPablo Neira Ayuso <>2014-02-26 01:51:31 +0100
committerPablo Neira Ayuso <>2014-02-27 17:10:26 +0100
commitb2c827223395682ee231504385f692267d1a3bfb (patch)
tree6489771dd4cd450799c9d59b9ecde6bedbd45df0 /include/rule.h
parente61e363e5603352322b59f7c09c968392ba1cef6 (diff)
src: add support for rule human-readable comments
This patch adds support for human-readable comments: nft add rule filter input accept comment \"accept all traffic\" Note that comments *always* come at the end of the rule. This uses the new data area that allows you to attach information to the rule via netlink. Signed-off-by: Pablo Neira Ayuso <>
Diffstat (limited to 'include/rule.h')
1 files changed, 2 insertions, 0 deletions
diff --git a/include/rule.h b/include/rule.h
index e06444eb..ecf801fb 100644
--- a/include/rule.h
+++ b/include/rule.h
@@ -14,6 +14,7 @@
* @set: set name (sets only)
* @handle: rule handle (rules only)
* @position: rule position (rules only)
+ * @comment: human-readable comment (rules only)
struct handle {
uint32_t family;
@@ -22,6 +23,7 @@ struct handle {
const char *set;
uint64_t handle;
uint64_t position;
+ const char *comment;
extern void handle_merge(struct handle *dst, const struct handle *src);