netfilter.vger.kernel.org archive mirror
 help / color / mirror / Atom feed
- recent:[subjects (threaded)|topics (new)|topics (active)]
2024-05-14 12:34 Nftables rules for kernel threads (cifsd)
2024-05-09 13:15 Re: Sets nesting/reference? Complex concatenations in vmaps? 4+ messages
2024-05-06 21:53 Re: Kernel panic in nf_nat_setup_info, with re injected packet from libnfml 2+ messages
2024-05-02  9:52 Retrieve L2 header or MAR from packet
2024-05-01  0:46 Re: IPv4 NAT and lo, and iptables 3+ messages
2024-04-30 11:01 HW Offloading Mellanox ConnectX-6DX
2024-04-27 19:23 Re: [Thread split] nftables rule optimization - dropping invalid in ingress? 8+ messages
2024-04-25 15:30 Re: How to have a dynamic ingress device(s) list? 7+ messages
2024-04-25 14:14 RE: Drop to Docker bridge 2+ messages
2024-04-22 17:32 Re: DoS/DDoS protection for end nodes 15+ messages
2024-04-20 19:19 Re: Combining/compacting 2 rules into 1 19+ messages
2024-04-20 17:31 Re: Rewrite arp response with nft 2+ messages
2024-04-19 17:29 Re: How to measure/profile ruleset performance? 5+ messages
2024-04-15 13:20 Re: NFQUEUE usage and interaction with later chain rules 3+ messages
2024-04-13 14:01 Re: Using iptables and ipset to DROP a list of 2 million addresses 4+ messages
2024-04-12 16:36 Re: connlimit from wiki.nftables.org not working 7+ messages
2024-04-10 18:24 Re: Correct way of setting the TCP max segment sizes for IPv4 and IPv6? 7+ messages
2024-04-02 13:24 Re: nftables: How to match ICMPv6 subtype in a rule? 9+ messages
2024-04-02  9:06 Docker NFT rules conflict
2024-03-31 12:00 RE: Rocky Linux 9 with firewalld and nftables always tracks connections 5+ messages
2024-03-28  8:20 Re: Mask as part of element in set 3+ messages
2024-03-18 20:57 Re: IP not banned in interval set 6+ messages
2024-03-18  9:47 Re: nft ends with error 5+ messages
2024-03-17  9:08 Re: Cannot get the correct IP version from packet 4+ messages
2024-03-12 16:35 Re: SNI filtering 2+ messages
2024-03-08 11:44 Re: nftables rate limiting per multiple seconds 14+ messages
2024-03-06 12:58 Re: nft socket module 3+ messages
2024-02-29 10:29 Re: snat with dynamic ip address 3+ messages
2024-02-28 21:35 Fwd: Defined parameters
2024-02-28 21:35 Fwd: Knocking example may not work?
2024-02-27 10:08 Ulogd2 Mysql KO
2024-02-26  9:50 Question: How to pass Docker container traffic through iptables tproxy?
2024-02-22 15:34 Nftables conntrack state matching JSON syntax
2024-02-16  3:11 nftables HOWto Wiki Question
2024-02-15 22:11 nftables and RFC 7084 section-4.3 L-14
2024-02-12 12:21 [ANNOUNCE] ipset 7.21 released
2024-02-08 20:12 Re: Are there nft set limits? 5+ messages
2024-02-06 12:18 Re: What happens if the machine runs out of memory while adding new nftables sets atomically? 5+ messages
2024-02-05 17:16 Re: Combine ipv4 and ipv6 in a set 40+ messages
2024-02-05 12:35 Re: Analyzing firewall rules programmatically 6+ messages
2024-02-02  0:36 Re: Is there an efficient way to delete multiple elements from a set? 12+ messages
2024-02-01 17:24 Re: [nftables] Multiple reject withs in a single rule 3+ messages
2024-01-31 16:39 [ANNOUNCE] ipset 7.20 released
2024-01-18 10:11 Re: Debugging libmnl client 4+ messages
2024-01-17  7:49 About adding a nft rule to limit opensearch connections
2024-01-11 13:49 Re: GUI Frontend for iptables and nftables Linux firewalls 3+ messages
2024-01-09 11:51 Re: Question about the man page 2+ messages
2023-12-27  8:38 How to match only one packet and no other subsequent new packets?
2023-12-26 11:52 Neighbour events for V6 deprecated addresses
2023-12-25 15:18 GUI Frontend for iptables and nftables Linux firewalls
2023-12-25  6:53 Kprobe for nf_nat is broken in Latest Debian 6.1.66-1
2023-12-24 11:31 Re: Vim Syntax Highlighting 3+ messages
2023-12-21 19:48 Re: Netfilter, IPVLAN, L3S and NAT64 5+ messages
2023-12-20 11:15 Re: Unit dependency of network-pre.target in nftables.service 13+ messages
2023-12-19 13:22 Re: Undelivered Mail Returned to Sender 2+ messages
2023-12-13 17:07 Re: nftables problem consultation 5+ messages
2023-12-12 20:13 tcpdump output changes after restarting nftable
2023-12-01 15:47 (no subject)
2023-11-28 11:09 Re: ipset hash:net,iface - can not add more than 64 interfaces 7+ messages
2023-11-23  2:46 PSA: this list has moved to new vger infra (no action required)
2023-11-22 15:18 Re: Getting error "Error: missing hook and priority in flowtable declaration" in nftables 1.0.9 4+ messages
2023-11-22  2:59 Re: nft tproxy failed to redirect on one system 4+ messages
2023-11-21  9:21 Re: Performing NAT 1:1 without connection tracking 2+ messages
2023-11-20 18:30 Fwd: nfqueue at postrouting hook does not work 2+ messages
2023-11-19 14:40 Getting error "Error: missing hook and priority in flowtable declaration" in nftables 1.0.9
2023-11-18 18:35 Re: Optimize fails on a large ruleset 4+ messages
2023-11-17 14:35 Optimize fails on a large ruleset
2023-11-17 11:06 [ANNOUNCE] Coreteam updates: Eric Leblond and Arturo Borrero enter emeritus status
2023-11-16 22:58 Re: meta time/hour questions 3+ messages
2023-11-13  2:36 Re: Problems getting started with dnat and port forwarding 2+ messages
2023-11-08 10:18 Re: Redirect doesn't do the job as dnat does 6+ messages
2023-11-06 15:41 Re: nftables expressions and operators 5+ messages
2023-11-05 21:33 Re: ip6 dscp fails map lookup 7+ messages
2023-11-02 22:21 Re: Help with debugging combination of tproxy and policy based routing 3+ messages
2023-11-02 10:26 Re: meta time rules display after 00:00 UTC 2+ messages
2023-11-02 10:15 Re: map problem with port range 4+ messages
2023-10-31 21:26 Re: nftables / DHCP / NAT 6+ messages
2023-10-30 17:22 Re: arptables-nft and comments in nft output 3+ messages
2023-10-25  0:56 Re: Flowtables ignore timeout settings in recent kernels 4+ messages
2023-10-24 23:43 Masquerading clients while trying to send traffic over ipsec tunnel
2023-10-20 14:02 Re: nf_nat_icmp_reply_translation dropped icmp redirect packet 5+ messages
2023-10-19 11:46 [ANNOUNCE] nftables 1.0.9 release
2023-10-18 14:37 Re: [nftables/nft] nft equivalent of "ipset test" 14+ messages
2023-10-18 12:05 Re: commit to kernel fails since Debian 12 (bookworm) 6+ messages
2023-10-17 11:52 Getting packet timestamps
2023-10-17  0:43 Re: [iptables/ipset] Bug? -m set --match-set myset src --packets-gt 2 -j ... 4+ messages
2023-10-14 14:24 Re: [libipset] How to read packet counter of a single item? 4+ messages
2023-10-13 14:55 Re: Efficient and correct time based bandwidth monitoring 3+ messages
2023-10-10 11:05 [ANNOUNCE] iptables 1.8.10 release
2023-10-09  7:31 Re: Typo on 'Sets' wiki page 2+ messages
2023-10-08 17:36 [PATCH nf] netfilter: nft_payload: fix wrong mac header matching 2+ messages
2023-10-05 20:27 doc suggestions
2023-10-02 12:29 Re: Display Masquerade mappings 3+ messages
2023-10-02  9:06 Re: number of elements in nftables set 2+ messages
2023-09-29 19:59 Re: ipset swap to nftables set 7+ messages
2023-09-29 16:33 Re: Detecting socks5 frames on server side 2+ messages
2023-09-29 11:18 [ANNOUNCE] conntrack-tools 1.4.8 release
2023-09-26  6:11 Drop tcp close tcp
2023-09-21  7:02 [ANNOUNCE] ipset 7.19 released
2023-09-21  6:56 Re: [ANNOUNCE] ipset 7.18 released 6+ messages
2023-09-20 14:20 Re: [PATCH] build: Fix double-prefix w/ pkgconfig 2+ messages
2023-09-13 15:32 [ANNOUNCE] nftlb 1.0.9 release
2023-09-13  5:01 Re: BUG REPORT : [patch V2 0/4] net, refcount: Address dst_entry reference count scalability issues - rcuref_put_slowpath+0x5f
2023-09-06  0:28 Could not load match [tcp udp conntrack] BPi R2-Pro Rockchip 3568
2023-09-05 18:47 Re: Is nftables thread safe? 2+ messages
2023-09-02 21:28 Presentation of a tool for firewall testing!
2023-09-01  8:37 Re: failing fail-over - commit still in progress 10+ messages
2023-08-31 15:49 Re: counter target 5+ messages
2023-08-31  9:22 Re: Extending an IPv4 filter to IPv6, Re: Extending an IPv4 filter to IPv6 16+ messages
2023-08-22 10:09 Re: Fwd: question about using conntrack to change the mark 9+ messages
2023-08-22  9:56 Re: List chain during attack high CPU usage 2+ messages
2023-08-20 21:44 Why does the cgroup iptables extension not work generally with the INPUT chain?
2023-08-13 21:41 Re: Iptables and DDoS attacks 4+ messages
2023-08-13 21:07 Re: Iptables and DDoS attacks
2023-08-13 19:47 iptables cannot perform forwarding operations correctly
2023-08-13 19:42 iptables cannot perform forwarding operations correctly
2023-08-12 16:53 Re: unable to start nftables 5+ messages
2023-08-11  4:00 nft tproxy failed to redirect on one system
2023-08-10 22:47 Re: Incompatibility when use python3-nftables and iptables-nft 2+ messages
2023-08-03 15:59 Re: Incomprehensible behavior 3+ messages
2023-08-03 14:37 Incomprehensible behavior
2023-08-03 13:47 Re: Nftables + ALG + Linux 6.1.0-10-amd64 …?... is it a kown Problem? 7+ messages
2023-08-02 18:48 Re: converting iptables/ip6tables to efficient nftables rules 4+ messages
2023-08-02 14:36 Re: nftables 1.0.6:  snat with maps 2+ messages
2023-08-02 11:54 Re: nftables 1.0.6: snat with maps 3+ messages
2023-08-01 10:01 I need help about to rewrite some iptables rules
2023-07-30 20:30 converting iptables/ip6tables to efficient nftables rules
2023-07-26 16:19 Re: ct state module issue 5+ messages
2023-07-20 20:05 Re: skb->mark not cleared for MLDv2 Reports? (skb->mark == 212 / 0xd4) 2+ messages
2023-07-19  0:16 Re: nftables 1.0.8 showing invalid type for ip dscp 2+ messages
2023-07-17 10:20 Re: [ANNOUNCE] libnftnl 1.2.6 release 4+ messages
2023-07-14 11:05 [ANNOUNCE] nftables 1.0.8 release
2023-07-11 21:28 Ingress filter issue with pedit
2023-07-11 13:50 Doubt on Iptables protocol extension
2023-07-10 23:23 pedit "pass" nonfunctional on ingress?
2023-07-10  7:39 Re: Processing nftable rules without loading them into the kernel 3+ messages
2023-07-07  7:28 Re: Matching on protocols inside IPv6 IPSec AH (legacy vs nft) 4+ messages
2023-07-07  5:04 input rule for "related" UDP traffic
2023-07-04 13:09 Re: Best practices on iif usage at persistent ruleset 5+ messages
2023-07-04  8:05 Słowa kluczowe do wypozycjonowania
2023-06-30  2:05 nftables Wiki! Enhance user experience with a chat widget!
2023-06-29  2:01 Re: iptables debian 11 package 2+ messages
2023-06-27 20:34 Re: NAT to multiple ranges 2+ messages
2023-06-26  1:08 Re: wiki documentation error (derp, false alarm...) 5+ messages
2023-06-25 18:35 Re: Linux netfilter / iptables : How to enable iptables TRACE chain handling with nf_log_syslog on RHEL8+? 4+ messages
2023-06-23 18:30 Re: ipset hash:net:port:net 2+ messages
2023-06-18 16:18 Re: Modify packet without NAT 6+ messages
2023-06-18 15:21 Re: nft list sets changed behavior 5+ messages
2023-06-10 23:14 Rule-based traffic/port mirroring
2023-06-08  9:56 Re: IPv4 Evil Bit 8+ messages
2023-06-08  9:39 HW Offload to Mellanox ConnectX-5
2023-06-07 20:09 Re: nftables: How to stop further chain traversal after accept verdict 6+ messages
2023-06-07 19:07 Re: Resetting the timeout counter for a named set element? 2+ messages
2023-06-06 10:30 nftables 0.9.8 - unknown rule handle
2023-06-06 10:30 nftables 0.9.8 - unknown rule handle
2023-06-05  7:30 Fotovoltaické rozvodnice
2023-06-02 16:47 nftables mark - tshark show [Frame is marked: False]
2023-05-30 18:21 Filter access to user process sockets
2023-05-29 16:48 Using netfilter to listen on events not working
2023-05-25 14:24 [PATCH] netfilter: fix NULL pointer dereference in nf_confirm_cthelper
2023-05-25 14:13 Help use parsing to get a promiscuous level
2023-05-25 14:12 Help use parsing to get a promiscuous level
2023-05-25  7:36 Centrala- system telefoniczny
2023-05-23  8:55 Re: Documentation for nft-sync 2+ messages
2023-05-23  8:54 Re: dst NETMAP 2+ messages
2023-05-22 14:52 Re: Why tproxy to 127.0.0.1:port doesn't make packets go through the input chain with iifname lo? 4+ messages
2023-05-22  7:30 Słowa kluczowe do wypozycjonowania
2023-05-16 18:36 Re: How to configure "full cone" NAT using iptables 6+ messages
2023-05-16 11:18 Re: How to configure "full cone" NAT using iptables 5+ messages
2023-05-12 23:32 Understanding the network stack internals for multicast packets if there is both a raw socket and local subscriber for IGMP messages
2023-05-11  6:16 Nft nat map/set net to net multi time
2023-05-10 16:05 New Linux kernel NetFilter flaw gives attackers root privileges
2023-05-05  2:03 [PATCH 2/2] netfilter: nfnetlink_queue: enable cgroup id socket info retrieval 3+ messages
2023-05-04  2:55 Re: Possible to check if ip daddr belongs to an interface in the prerouting chain? 13+ messages
2023-05-03 11:33 Re: ct state vmap no longer works on 6.3 kernel 5+ messages
2023-04-29  8:55 Re: Translating iptables rules with TTL, HL and physdev to nftables 2+ messages
2023-04-20 11:09 [Announce] Foomuuri - New firewall software using nftables
2023-04-19 18:32 How to use connection tracking with Docker?
2023-04-19  8:30 UTF8 for non-breaking space reports junk in nftables [was Re: Rule error using ct helper for TFTP] 2+ messages
2023-04-16 18:40 Re: Change in nft set element add syntax? 2+ messages
2023-04-16 17:51 Re: iptables 1.4.16.3 on a Zyxel Router: NOTRACK / CT --notrack not available 2+ messages
2023-04-01 18:59 Re: Help/Advice with Ethernet NAT or "hub-mode" bridge 3+ messages
2023-03-30 20:17 Re: Programmatically adding an element into a map using libnftnl 2+ messages
2023-03-30 20:08 Re: Creating a map programmatically using the C library libnftnl 7+ messages
2023-03-27 17:27 Re: Creating a map programmatically with libnftnl 2+ messages
2023-03-27 15:33 Re: nftables: Internal error when checking rules 8+ messages
2023-03-23 20:48 Both SNAT MAC and DNAT MAC on packet
2023-03-22 19:44 Re: rate-limit ssh for both IPv4 and IPv6 2+ messages
2023-03-22 18:28 rate-limit ssh for both IPv4 and IPv6
2023-03-13 19:21 [ANNOUNCE] nftables 1.0.7 release
2023-03-10  8:35 Słowa kluczowe do wypozycjonowania
2023-03-09 20:00 Re: [ANNOUNCE] libnftnl 1.2.5 release 2+ messages
2023-03-02 19:40 Re: Bug report DNAT destination not work 4+ messages
2023-03-02  9:15 Słowa kluczowe do wypozycjonowania
2023-03-02  7:58 Re: Could somebody please explain priorities correctly and in an understandable way? 3+ messages
2023-03-01 10:55 Could somebody please explain priorities correctly and in an understandable way?
2023-02-24 14:59 DNS answer packet (UDP) can´t catch´d by application
2023-02-23 13:39 Re: ipset: update timeout when IP matches 5+ messages
2023-02-21 20:36 Re: drop first SYN packet with nftables 2+ messages
2023-02-15  9:15 Słowa kluczowe do wypozycjonowania

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).