From mboxrd@z Thu Jan 1 00:00:00 1970 From: Fabian Franz Subject: Re: [Question] Is there some documentation for nftables development Date: Wed, 15 Feb 2017 18:21:47 +0100 Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8BIT To: Return-path: Received: from relay01-mailcontrol.conova.com ([217.196.144.161]:53618 "EHLO relay01-mailcontrol.conova.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751313AbdBORVy (ORCPT ); Wed, 15 Feb 2017 12:21:54 -0500 In-Reply-To: Sender: netfilter-devel-owner@vger.kernel.org List-ID: Dear Mr. Cochran, even if your document looks good, I am looking for some documentation related to nftables - iptables is NO option because I want to implement a kernel module for nftables doing that. The problem is, that there is a wiki how to use it, but there is no information how to extend it: https://wiki.nftables.org/wiki-nftables/index.php/Main_Page Kind regards Fabian Franz Am 2017-02-15 um 17:44 schrieb Bob Cochran: > If you don't mind using iptables/Xtables instead: > http://inai.de/documents/Netfilter_Modules.pdf > > > > On 02/15/2017 08:59 AM, Fabian Franz wrote: >> Hi there, >> >> is there some documentation available how to create a custom match for a >> firewall rule (nftables). >> >> What I want to create is a custom match which will query a user space >> application, if the packet is allowed (returning a bool value)? >> >> Kind regards >> >> Fabian Franz >> >> -- >> To unsubscribe from this list: send the line "unsubscribe >> netfilter-devel" in >> the body of a message to majordomo@vger.kernel.org >> More majordomo info at http://vger.kernel.org/majordomo-info.html >> >