BPF comes to firewalls
BPF comes to firewalls
Posted Feb 20, 2018 16:17 UTC (Tue) by flussence (guest, #85566)In reply to: BPF comes to firewalls by ringerc
Parent article: BPF comes to firewalls
I've got a working (AFAIK) nftables setup. The end result looks pretty after months of tweaking, but I completely agree on how unnecessarily painful it was to get there. Spitting nothing but strerror(-ENOENT) at the user whenever any module is missing from the kernel is a nasty thing to do…
Posted Feb 21, 2018 0:15 UTC (Wed)
by florianfainelli (subscriber, #61952)
[Link]
BPF comes to firewalls
Fortunately we now have extended netlink acks to give you a more meaningful error code...