subject:"\[PATCH iptables\] extensions\: libxt_connlabel\: Add translation to nft"

Re: [PATCH iptables] extensions: libxt_connlabel: Add translation to nft

2016-07-16 Thread Liping Zhang

At 2016-07-16 17:04:39, "Florian Westphal" wrote: >Liping Zhang wrote: >> >> # iptables-translate -A INPUT -m connlabel ! --label bit40 --set >> nft add rule ip filter INPUT ct label set bit40 ct label != bit40 counter > >Should probably be: > >... ct

[PATCH iptables] extensions: libxt_connlabel: Add translation to nft

2016-07-16 Thread Liping Zhang

From: Liping Zhang Add translation for connlabel to nftables. For examples: # iptables-translate -A INPUT -m connlabel --label bit40 nft add rule ip filter INPUT ct label bit40 counter # iptables-translate -A INPUT -m connlabel ! --label bit40 --set nft add