User contributions for Pablo
26 November 2014
- 22:3022:30, 26 November 2014 diff hist −590 Nftables →Priority-based Atomic Fix: This is wrong, just prepend 'flush ruleset' (requires >= 3.18) or 'flush table XYZ' (since 3.13) to your ruleset and use nft -f
- 17:3817:38, 26 November 2014 diff hist +101 Nftables add reference to nftables wiki page
- 17:3617:36, 26 November 2014 diff hist +20 Nftables →Logging to Syslog: modprobe xt_LOG only needed for kernels < 3.17
- 17:3517:35, 26 November 2014 diff hist −4 Nftables →Limit rate and tcp flags IP/IPv6 Firewall: The brackets have an special meaning. They tell the kernel to represent things as a set. A set for single port is overkill
- 17:3417:34, 26 November 2014 diff hist −6 Nftables →Limit rate and tcp flags IP/IPv6 Firewall: ct state are flags, no need for a set representation (brackets).
- 17:3317:33, 26 November 2014 diff hist −6 Nftables →Simple IP/IPv6 Firewall: ct state are flags, no need to use a set definition for this. The brackets have specific semantics.
- 17:3217:32, 26 November 2014 diff hist −239 Nftables →File Definitions: nft -f loads ruleset atomically
- 17:2517:25, 26 November 2014 diff hist −1,210 Nftables →Rules Script with Atomic Fix: This is wrong, you have to use 'nft -f' to load your ruleset.