| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526 |
- # SPDX-License-Identifier: ((GPL-2.0 WITH Linux-syscall-note) OR BSD-3-Clause)
- name: nftables
- protocol: netlink-raw
- protonum: 12
- doc:
- Netfilter nftables configuration over netlink.
- definitions:
- -
- name: nfgenmsg
- type: struct
- members:
- -
- name: nfgen-family
- type: u8
- -
- name: version
- type: u8
- -
- name: res-id
- byte-order: big-endian
- type: u16
- -
- name: meta-keys
- type: enum
- entries:
- - len
- - protocol
- - priority
- - mark
- - iif
- - oif
- - iifname
- - oifname
- - iftype
- - oiftype
- - skuid
- - skgid
- - nftrace
- - rtclassid
- - secmark
- - nfproto
- - l4-proto
- - bri-iifname
- - bri-oifname
- - pkttype
- - cpu
- - iifgroup
- - oifgroup
- - cgroup
- - prandom
- - secpath
- - iifkind
- - oifkind
- - bri-iifpvid
- - bri-iifvproto
- - time-ns
- - time-day
- - time-hour
- - sdif
- - sdifname
- - bri-broute
- -
- name: bitwise-ops
- type: enum
- entries:
- - bool
- - lshift
- - rshift
- -
- name: cmp-ops
- type: enum
- entries:
- - eq
- - neq
- - lt
- - lte
- - gt
- - gte
- -
- name: object-type
- type: enum
- entries:
- - unspec
- - counter
- - quota
- - ct-helper
- - limit
- - connlimit
- - tunnel
- - ct-timeout
- - secmark
- - ct-expect
- - synproxy
- -
- name: nat-range-flags
- type: flags
- entries:
- - map-ips
- - proto-specified
- - proto-random
- - persistent
- - proto-random-fully
- - proto-offset
- - netmap
- -
- name: table-flags
- type: flags
- entries:
- - dormant
- - owner
- - persist
- -
- name: chain-flags
- type: flags
- entries:
- - base
- - hw-offload
- - binding
- -
- name: set-flags
- type: flags
- entries:
- - anonymous
- - constant
- - interval
- - map
- - timeout
- - eval
- - object
- - concat
- - expr
- -
- name: lookup-flags
- type: flags
- entries:
- - invert
- -
- name: ct-keys
- type: enum
- entries:
- - state
- - direction
- - status
- - mark
- - secmark
- - expiration
- - helper
- - l3protocol
- - src
- - dst
- - protocol
- - proto-src
- - proto-dst
- - labels
- - pkts
- - bytes
- - avgpkt
- - zone
- - eventmask
- - src-ip
- - dst-ip
- - src-ip6
- - dst-ip6
- - ct-id
- -
- name: ct-direction
- type: enum
- entries:
- - original
- - reply
- -
- name: quota-flags
- type: flags
- entries:
- - invert
- - depleted
- -
- name: verdict-code
- type: enum
- entries:
- - name: continue
- value: 0xffffffff
- - name: break
- value: 0xfffffffe
- - name: jump
- value: 0xfffffffd
- - name: goto
- value: 0xfffffffc
- - name: return
- value: 0xfffffffb
- - name: drop
- value: 0
- - name: accept
- value: 1
- - name: stolen
- value: 2
- - name: queue
- value: 3
- - name: repeat
- value: 4
- -
- name: fib-result
- type: enum
- entries:
- - oif
- - oifname
- - addrtype
- -
- name: fib-flags
- type: flags
- entries:
- - saddr
- - daddr
- - mark
- - iif
- - oif
- - present
- -
- name: reject-types
- type: enum
- entries:
- - icmp-unreach
- - tcp-rst
- - icmpx-unreach
- attribute-sets:
- -
- name: empty-attrs
- attributes:
- -
- name: name
- type: string
- -
- name: batch-attrs
- attributes:
- -
- name: genid
- type: u32
- byte-order: big-endian
- -
- name: table-attrs
- attributes:
- -
- name: name
- type: string
- doc: name of the table
- -
- name: flags
- type: u32
- byte-order: big-endian
- doc: bitmask of flags
- enum: table-flags
- enum-as-flags: true
- -
- name: use
- type: u32
- byte-order: big-endian
- doc: number of chains in this table
- -
- name: handle
- type: u64
- byte-order: big-endian
- doc: numeric handle of the table
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: chain-attrs
- attributes:
- -
- name: table
- type: string
- doc: name of the table containing the chain
- -
- name: handle
- type: u64
- byte-order: big-endian
- doc: numeric handle of the chain
- -
- name: name
- type: string
- doc: name of the chain
- -
- name: hook
- type: nest
- nested-attributes: nft-hook-attrs
- doc: hook specification for basechains
- -
- name: policy
- type: u32
- byte-order: big-endian
- doc: numeric policy of the chain
- -
- name: use
- type: u32
- byte-order: big-endian
- doc: number of references to this chain
- -
- name: type
- type: string
- doc: type name of the chain
- -
- name: counters
- type: nest
- nested-attributes: nft-counter-attrs
- doc: counter specification of the chain
- -
- name: flags
- type: u32
- byte-order: big-endian
- doc: chain flags
- enum: chain-flags
- enum-as-flags: true
- -
- name: id
- type: u32
- byte-order: big-endian
- doc: uniquely identifies a chain in a transaction
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: counter-attrs
- attributes:
- -
- name: bytes
- type: u64
- byte-order: big-endian
- -
- name: packets
- type: u64
- byte-order: big-endian
- -
- name: pad
- type: pad
- -
- name: nft-hook-attrs
- attributes:
- -
- name: num
- type: u32
- byte-order: big-endian
- -
- name: priority
- type: s32
- byte-order: big-endian
- -
- name: dev
- type: string
- doc: net device name
- -
- name: devs
- type: nest
- nested-attributes: hook-dev-attrs
- doc: list of net devices
- -
- name: hook-dev-attrs
- attributes:
- -
- name: name
- type: string
- multi-attr: true
- -
- name: nft-counter-attrs
- attributes:
- -
- name: bytes
- type: u64
- -
- name: packets
- type: u64
- -
- name: rule-attrs
- attributes:
- -
- name: table
- type: string
- doc: name of the table containing the rule
- -
- name: chain
- type: string
- doc: name of the chain containing the rule
- -
- name: handle
- type: u64
- byte-order: big-endian
- doc: numeric handle of the rule
- -
- name: expressions
- type: nest
- nested-attributes: expr-list-attrs
- doc: list of expressions
- -
- name: compat
- type: nest
- nested-attributes: rule-compat-attrs
- doc: compatibility specifications of the rule
- -
- name: position
- type: u64
- byte-order: big-endian
- doc: numeric handle of the previous rule
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: id
- type: u32
- doc: uniquely identifies a rule in a transaction
- -
- name: position-id
- type: u32
- doc: transaction unique identifier of the previous rule
- -
- name: chain-id
- type: u32
- doc: add the rule to chain by ID, alternative to chain name
- -
- name: expr-list-attrs
- attributes:
- -
- name: elem
- type: nest
- nested-attributes: expr-attrs
- multi-attr: true
- -
- name: expr-attrs
- attributes:
- -
- name: name
- type: string
- doc: name of the expression type
- -
- name: data
- type: sub-message
- sub-message: expr-ops
- selector: name
- doc: type specific data
- -
- name: rule-compat-attrs
- attributes:
- -
- name: proto
- type: binary
- doc: numeric value of the handled protocol
- -
- name: flags
- type: binary
- doc: bitmask of flags
- -
- name: set-attrs
- attributes:
- -
- name: table
- type: string
- doc: table name
- -
- name: name
- type: string
- doc: set name
- -
- name: flags
- type: u32
- enum: set-flags
- byte-order: big-endian
- doc: bitmask of enum nft_set_flags
- -
- name: key-type
- type: u32
- byte-order: big-endian
- doc: key data type, informational purpose only
- -
- name: key-len
- type: u32
- byte-order: big-endian
- doc: key data length
- -
- name: data-type
- type: u32
- byte-order: big-endian
- doc: mapping data type
- -
- name: data-len
- type: u32
- byte-order: big-endian
- doc: mapping data length
- -
- name: policy
- type: u32
- byte-order: big-endian
- doc: selection policy
- -
- name: desc
- type: nest
- nested-attributes: set-desc-attrs
- doc: set description
- -
- name: id
- type: u32
- doc: uniquely identifies a set in a transaction
- -
- name: timeout
- type: u64
- doc: default timeout value
- -
- name: gc-interval
- type: u32
- doc: garbage collection interval
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: pad
- type: pad
- -
- name: obj-type
- type: u32
- byte-order: big-endian
- doc: stateful object type
- -
- name: handle
- type: u64
- byte-order: big-endian
- doc: set handle
- -
- name: expr
- type: nest
- nested-attributes: expr-attrs
- doc: set expression
- multi-attr: true
- -
- name: expressions
- type: nest
- nested-attributes: set-list-attrs
- doc: list of expressions
- -
- name: set-desc-attrs
- attributes:
- -
- name: size
- type: u32
- byte-order: big-endian
- doc: number of elements in set
- -
- name: concat
- type: nest
- nested-attributes: set-desc-concat-attrs
- doc: description of field concatenation
- multi-attr: true
- -
- name: set-desc-concat-attrs
- attributes:
- -
- name: elem
- type: nest
- nested-attributes: set-field-attrs
- -
- name: set-field-attrs
- attributes:
- -
- name: len
- type: u32
- byte-order: big-endian
- -
- name: set-list-attrs
- attributes:
- -
- name: elem
- type: nest
- nested-attributes: expr-attrs
- multi-attr: true
- -
- name: setelem-attrs
- attributes:
- -
- name: key
- type: nest
- nested-attributes: data-attrs
- doc: key value
- -
- name: data
- type: nest
- nested-attributes: data-attrs
- doc: data value of mapping
- -
- name: flags
- type: binary
- doc: bitmask of nft_set_elem_flags
- -
- name: timeout
- type: u64
- doc: timeout value
- -
- name: expiration
- type: u64
- doc: expiration time
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: expr
- type: nest
- nested-attributes: expr-attrs
- doc: expression
- -
- name: objref
- type: string
- doc: stateful object reference
- -
- name: key-end
- type: nest
- nested-attributes: data-attrs
- doc: closing key value
- -
- name: expressions
- type: nest
- nested-attributes: expr-list-attrs
- doc: list of expressions
- -
- name: setelem-list-elem-attrs
- attributes:
- -
- name: elem
- type: nest
- nested-attributes: setelem-attrs
- multi-attr: true
- -
- name: setelem-list-attrs
- attributes:
- -
- name: table
- type: string
- -
- name: set
- type: string
- -
- name: elements
- type: nest
- nested-attributes: setelem-list-elem-attrs
- -
- name: set-id
- type: u32
- -
- name: gen-attrs
- attributes:
- -
- name: id
- type: u32
- byte-order: big-endian
- doc: ruleset generation id
- -
- name: proc-pid
- type: u32
- byte-order: big-endian
- -
- name: proc-name
- type: string
- -
- name: obj-attrs
- attributes:
- -
- name: table
- type: string
- doc: name of the table containing the expression
- -
- name: name
- type: string
- doc: name of this expression type
- -
- name: type
- type: u32
- enum: object-type
- byte-order: big-endian
- doc: stateful object type
- -
- name: data
- type: sub-message
- sub-message: obj-data
- selector: type
- doc: stateful object data
- -
- name: use
- type: u32
- byte-order: big-endian
- doc: number of references to this expression
- -
- name: handle
- type: u64
- byte-order: big-endian
- doc: object handle
- -
- name: pad
- type: pad
- -
- name: userdata
- type: binary
- doc: user data
- -
- name: quota-attrs
- attributes:
- -
- name: bytes
- type: u64
- byte-order: big-endian
- -
- name: flags
- type: u32
- byte-order: big-endian
- enum: quota-flags
- -
- name: pad
- type: pad
- -
- name: consumed
- type: u64
- byte-order: big-endian
- -
- name: flowtable-attrs
- attributes:
- -
- name: table
- type: string
- -
- name: name
- type: string
- -
- name: hook
- type: nest
- nested-attributes: flowtable-hook-attrs
- -
- name: use
- type: u32
- byte-order: big-endian
- -
- name: handle
- type: u64
- byte-order: big-endian
- -
- name: pad
- type: pad
- -
- name: flags
- type: u32
- byte-order: big-endian
- -
- name: flowtable-hook-attrs
- attributes:
- -
- name: num
- type: u32
- byte-order: big-endian
- -
- name: priority
- type: u32
- byte-order: big-endian
- -
- name: devs
- type: nest
- nested-attributes: hook-dev-attrs
- -
- name: expr-bitwise-attrs
- attributes:
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: len
- type: u32
- byte-order: big-endian
- -
- name: mask
- type: nest
- nested-attributes: data-attrs
- -
- name: xor
- type: nest
- nested-attributes: data-attrs
- -
- name: op
- type: u32
- byte-order: big-endian
- enum: bitwise-ops
- -
- name: data
- type: nest
- nested-attributes: data-attrs
- -
- name: expr-cmp-attrs
- attributes:
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: op
- type: u32
- byte-order: big-endian
- enum: cmp-ops
- -
- name: data
- type: nest
- nested-attributes: data-attrs
- -
- name: data-attrs
- attributes:
- -
- name: value
- type: binary
- # sub-type: u8
- -
- name: verdict
- type: nest
- nested-attributes: verdict-attrs
- -
- name: verdict-attrs
- attributes:
- -
- name: code
- type: u32
- byte-order: big-endian
- enum: verdict-code
- -
- name: chain
- type: string
- -
- name: chain-id
- type: u32
- -
- name: expr-counter-attrs
- attributes:
- -
- name: bytes
- type: u64
- doc: Number of bytes
- -
- name: packets
- type: u64
- doc: Number of packets
- -
- name: pad
- type: pad
- -
- name: expr-fib-attrs
- attributes:
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: result
- type: u32
- byte-order: big-endian
- enum: fib-result
- -
- name: flags
- type: u32
- byte-order: big-endian
- enum: fib-flags
- -
- name: expr-ct-attrs
- attributes:
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: key
- type: u32
- byte-order: big-endian
- enum: ct-keys
- -
- name: direction
- type: u8
- enum: ct-direction
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: expr-flow-offload-attrs
- attributes:
- -
- name: name
- type: string
- doc: Flow offload table name
- -
- name: expr-immediate-attrs
- attributes:
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: data
- type: nest
- nested-attributes: data-attrs
- -
- name: expr-lookup-attrs
- attributes:
- -
- name: set
- type: string
- doc: Name of set to use
- -
- name: set id
- type: u32
- byte-order: big-endian
- doc: ID of set to use
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: flags
- type: u32
- byte-order: big-endian
- enum: lookup-flags
- -
- name: expr-meta-attrs
- attributes:
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: key
- type: u32
- byte-order: big-endian
- enum: meta-keys
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: expr-nat-attrs
- attributes:
- -
- name: type
- type: u32
- byte-order: big-endian
- -
- name: family
- type: u32
- byte-order: big-endian
- -
- name: reg-addr-min
- type: u32
- byte-order: big-endian
- -
- name: reg-addr-max
- type: u32
- byte-order: big-endian
- -
- name: reg-proto-min
- type: u32
- byte-order: big-endian
- -
- name: reg-proto-max
- type: u32
- byte-order: big-endian
- -
- name: flags
- type: u32
- byte-order: big-endian
- enum: nat-range-flags
- enum-as-flags: true
- -
- name: expr-payload-attrs
- attributes:
- -
- name: dreg
- type: u32
- byte-order: big-endian
- -
- name: base
- type: u32
- byte-order: big-endian
- -
- name: offset
- type: u32
- byte-order: big-endian
- -
- name: len
- type: u32
- byte-order: big-endian
- -
- name: sreg
- type: u32
- byte-order: big-endian
- -
- name: csum-type
- type: u32
- byte-order: big-endian
- -
- name: csum-offset
- type: u32
- byte-order: big-endian
- -
- name: csum-flags
- type: u32
- byte-order: big-endian
- -
- name: expr-reject-attrs
- attributes:
- -
- name: type
- type: u32
- byte-order: big-endian
- enum: reject-types
- -
- name: icmp-code
- type: u8
- -
- name: expr-target-attrs
- attributes:
- -
- name: name
- type: string
- -
- name: rev
- type: u32
- byte-order: big-endian
- -
- name: info
- type: binary
- -
- name: expr-tproxy-attrs
- attributes:
- -
- name: family
- type: u32
- byte-order: big-endian
- -
- name: reg-addr
- type: u32
- byte-order: big-endian
- -
- name: reg-port
- type: u32
- byte-order: big-endian
- -
- name: expr-objref-attrs
- attributes:
- -
- name: imm-type
- type: u32
- byte-order: big-endian
- -
- name: imm-name
- type: string
- doc: object name
- -
- name: set-sreg
- type: u32
- byte-order: big-endian
- -
- name: set-name
- type: string
- doc: name of object map
- -
- name: set-id
- type: u32
- byte-order: big-endian
- doc: id of object map
- sub-messages:
- -
- name: expr-ops
- formats:
- -
- value: bitwise
- attribute-set: expr-bitwise-attrs
- -
- value: cmp
- attribute-set: expr-cmp-attrs
- -
- value: counter
- attribute-set: expr-counter-attrs
- -
- value: ct
- attribute-set: expr-ct-attrs
- -
- value: fib
- attribute-set: expr-fib-attrs
- -
- value: flow_offload
- attribute-set: expr-flow-offload-attrs
- -
- value: immediate
- attribute-set: expr-immediate-attrs
- -
- value: lookup
- attribute-set: expr-lookup-attrs
- -
- value: meta
- attribute-set: expr-meta-attrs
- -
- value: nat
- attribute-set: expr-nat-attrs
- -
- value: objref
- attribute-set: expr-objref-attrs
- -
- value: payload
- attribute-set: expr-payload-attrs
- -
- value: quota
- attribute-set: quota-attrs
- -
- value: reject
- attribute-set: expr-reject-attrs
- -
- value: target
- attribute-set: expr-target-attrs
- -
- value: tproxy
- attribute-set: expr-tproxy-attrs
- -
- name: obj-data
- formats:
- -
- value: counter
- attribute-set: counter-attrs
- -
- value: quota
- attribute-set: quota-attrs
- operations:
- enum-model: directional
- list:
- -
- name: batch-begin
- doc: Start a batch of operations
- attribute-set: batch-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0x10
- attributes:
- - genid
- reply:
- value: 0x10
- attributes:
- - genid
- -
- name: batch-end
- doc: Finish a batch of operations
- attribute-set: batch-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0x11
- attributes:
- - genid
- -
- name: newtable
- doc: Create a new table.
- attribute-set: table-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa00
- attributes:
- - name
- -
- name: gettable
- doc: Get / dump tables.
- attribute-set: table-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa01
- attributes:
- - name
- reply:
- value: 0xa00
- attributes:
- - name
- -
- name: deltable
- doc: Delete an existing table.
- attribute-set: table-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa02
- attributes:
- - name
- -
- name: destroytable
- doc: Delete an existing table with destroy semantics (ignoring ENOENT errors).
- attribute-set: table-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1a
- attributes:
- - name
- -
- name: newchain
- doc: Create a new chain.
- attribute-set: chain-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa03
- attributes:
- - name
- -
- name: getchain
- doc: Get / dump chains.
- attribute-set: chain-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa04
- attributes:
- - name
- reply:
- value: 0xa03
- attributes:
- - name
- -
- name: delchain
- doc: Delete an existing chain.
- attribute-set: chain-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa05
- attributes:
- - name
- -
- name: destroychain
- doc: Delete an existing chain with destroy semantics (ignoring ENOENT errors).
- attribute-set: chain-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1b
- attributes:
- - name
- -
- name: newrule
- doc: Create a new rule.
- attribute-set: rule-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa06
- attributes:
- - name
- -
- name: getrule
- doc: Get / dump rules.
- attribute-set: rule-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa07
- attributes:
- - name
- reply:
- value: 0xa06
- attributes:
- - name
- -
- name: getrule-reset
- doc: Get / dump rules and reset stateful expressions.
- attribute-set: rule-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa19
- attributes:
- - name
- reply:
- value: 0xa06
- attributes:
- - name
- -
- name: delrule
- doc: Delete an existing rule.
- attribute-set: rule-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa08
- attributes:
- - name
- -
- name: destroyrule
- doc: Delete an existing rule with destroy semantics (ignoring ENOENT errors).
- attribute-set: rule-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1c
- attributes:
- - name
- -
- name: newset
- doc: Create a new set.
- attribute-set: set-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa09
- attributes:
- - name
- -
- name: getset
- doc: Get / dump sets.
- attribute-set: set-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa0a
- attributes:
- - name
- reply:
- value: 0xa09
- attributes:
- - name
- -
- name: delset
- doc: Delete an existing set.
- attribute-set: set-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa0b
- attributes:
- - name
- -
- name: destroyset
- doc: Delete an existing set with destroy semantics (ignoring ENOENT errors).
- attribute-set: set-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1d
- attributes:
- - name
- -
- name: newsetelem
- doc: Create a new set element.
- attribute-set: setelem-list-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa0c
- attributes:
- - name
- -
- name: getsetelem
- doc: Get / dump set elements.
- attribute-set: setelem-list-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa0d
- attributes:
- - name
- reply:
- value: 0xa0c
- attributes:
- - name
- -
- name: getsetelem-reset
- doc: Get / dump set elements and reset stateful expressions.
- attribute-set: setelem-list-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa21
- attributes:
- - name
- reply:
- value: 0xa0c
- attributes:
- - name
- -
- name: delsetelem
- doc: Delete an existing set element.
- attribute-set: setelem-list-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa0e
- attributes:
- - name
- -
- name: destroysetelem
- doc: Delete an existing set element with destroy semantics.
- attribute-set: setelem-list-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1e
- attributes:
- - name
- -
- name: getgen
- doc: Get / dump rule-set generation.
- attribute-set: gen-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa10
- attributes:
- - name
- reply:
- value: 0xa0f
- attributes:
- - name
- -
- name: newobj
- doc: Create a new stateful object.
- attribute-set: obj-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa12
- attributes:
- - name
- -
- name: getobj
- doc: Get / dump stateful objects.
- attribute-set: obj-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa13
- attributes:
- - name
- reply:
- value: 0xa12
- attributes:
- - name
- -
- name: delobj
- doc: Delete an existing stateful object.
- attribute-set: obj-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa14
- attributes:
- - name
- -
- name: destroyobj
- doc: Delete an existing stateful object with destroy semantics.
- attribute-set: obj-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa1f
- attributes:
- - name
- -
- name: newflowtable
- doc: Create a new flow table.
- attribute-set: flowtable-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa16
- attributes:
- - name
- -
- name: getflowtable
- doc: Get / dump flow tables.
- attribute-set: flowtable-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa17
- attributes:
- - name
- reply:
- value: 0xa16
- attributes:
- - name
- -
- name: delflowtable
- doc: Delete an existing flow table.
- attribute-set: flowtable-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa18
- attributes:
- - name
- -
- name: destroyflowtable
- doc: Delete an existing flow table with destroy semantics.
- attribute-set: flowtable-attrs
- fixed-header: nfgenmsg
- do:
- request:
- value: 0xa20
- attributes:
- - name
- mcast-groups:
- list:
- -
- name: mgmt
|
