[Bug 1175] Document limitations on identifier names

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Wed Aug 23 23:44:11 CEST 2017


https://bugzilla.netfilter.org/show_bug.cgi?id=1175

--- Comment #1 from Jeff Kletsky <netfilter at allycomm.com> ---
The limit on set identifiers appears to be 31 characters, conflicting with the
wiki on this point. It also appears that the limit on chain identifiers is also
31 characters.

The limit on define identifiers ("variable names") appears to be somewhere in
excess of 65 characters.

~/build/nftables$ git log -1
commit d74eed8c9649e9278b69f2cd0fd92f71e3e19cfb (HEAD -> master, tag:
2017-08-19, origin/master, origin/HEAD)
Author: Varsha Rao <rvarsha016 at gmail.com>
Date:   Wed Aug 16 19:48:17 2017 +0530


$ cat nftables.conf 
#!/usr/sbin/nft -f

flush ruleset

table inet global {

    define identifier123456789212345678931234567894123456789512345678961234. =
one 
    define identifier123456789212345678931234567894123456789512345678961234_ =
one 


    chain prerouting12345678921234567893. {
        type filter hook prerouting priority -175
    }

    chain prerouting12345678921234567893_ {
        type filter hook prerouting priority -50
    }

    set identifier12345678921234567893. {
        type inet_service
    }

    set identifier12345678921234567893_ {
        type inet_service
    }

}

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20170823/71a4df12/attachment.html>


More information about the netfilter-buglog mailing list