aboutsummaryrefslogtreecommitdiffstats
path: root/include/uapi
diff options
context:
space:
mode:
authorPablo Neira Ayuso <pablo@netfilter.org>2015-11-25 13:39:38 +0100
committerPablo Neira Ayuso <pablo@netfilter.org>2016-01-04 17:48:38 +0100
commit39e6dea28adc874f7021e5580c13cab0b58407ea (patch)
tree63a1cd4ecfd32333dfba8d7305e5dc53f2d2285a /include/uapi
parentnetfilter: nf_tables: add packet duplication to the netdev family (diff)
downloadlinux-dev-39e6dea28adc874f7021e5580c13cab0b58407ea.tar.xz
linux-dev-39e6dea28adc874f7021e5580c13cab0b58407ea.zip
netfilter: nf_tables: add forward expression to the netdev family
You can use this to forward packets from ingress to the egress path of the specified interface. This provides a fast path to bounce packets from one interface to another specific destination interface. Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'include/uapi')
-rw-r--r--include/uapi/linux/netfilter/nf_tables.h12
1 files changed, 12 insertions, 0 deletions
diff --git a/include/uapi/linux/netfilter/nf_tables.h b/include/uapi/linux/netfilter/nf_tables.h
index 22043ce95ae6..731288a039f6 100644
--- a/include/uapi/linux/netfilter/nf_tables.h
+++ b/include/uapi/linux/netfilter/nf_tables.h
@@ -984,6 +984,18 @@ enum nft_dup_attributes {
#define NFTA_DUP_MAX (__NFTA_DUP_MAX - 1)
/**
+ * enum nft_fwd_attributes - nf_tables fwd expression netlink attributes
+ *
+ * @NFTA_FWD_SREG_DEV: source register of output interface (NLA_U32: nft_register)
+ */
+enum nft_fwd_attributes {
+ NFTA_FWD_UNSPEC,
+ NFTA_FWD_SREG_DEV,
+ __NFTA_FWD_MAX
+};
+#define NFTA_FWD_MAX (__NFTA_FWD_MAX - 1)
+
+/**
* enum nft_gen_attributes - nf_tables ruleset generation attributes
*
* @NFTA_GEN_ID: Ruleset generation ID (NLA_U32)
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.