Mailing List Archive

[ANNOUNCE] libnftnl 1.0.7 release
Hi!

The Netfilter project proudly presents:

libnftnl 1.0.7

libnftnl is a userspace library providing a low-level netlink
programming interface (API) to the in-kernel nf_tables subsystem. The
library libnftnl has been previously known as libnftables. This library
is currently used by the nft command line tool.

This release includes the following list of updates:

* New nftnl_rule_cmp() interface to compare rules.

* Support for new kernel expressions:
- Number Generator (a.k.a. numgen).
- Routing (a.k.a. rt).
- Range.
- Inverted set lookups.
- Inverted dynamic set updates (ie. rule mismatch on full sets).
- Packet quota.
- Hash.
- Forward Information Base lookups (a.k.a. fib).
- Reference to stateful objects (requires kernel 4.10-rc).
- Notrack.

* Allow to add userdata to sets.

* Support for stateful objects, including quota and counter (requires
kernel 4.10-rc).

* Support for layer 4 pseudoheader fields checksum updates (requires
kernel 4.10-rc).

... and fixes.

You can download this library from:

http://www.netfilter.org/projects/libnftnl/downloads.html
ftp://ftp.netfilter.org/pub/libnftnl/

Thanks!