#!/bin/bash

set -e

tmpfile=$(mktemp)
if [ ! -w $tmpfile ] ; then
        echo "Failed to create tmp file" >&2
        exit 0
fi

#trap "rm -rf $tmpfile" EXIT # cleanup if aborted

RULESET='
define set1 = {
	2.2.2.0/24,
}
define set2 = {
	$set1,
	1.1.1.0/24
}
table ip x {
	chain y {
		ip saddr { 3.3.3.0/24, $set2 }
	}
}'

echo "$RULESET" > $tmpfile
$NFT -f $tmpfile
if [ $? -ne 0 ] ; then
        echo "E: unable to load ruleset" >&2
        exit 1
fi