[Bug 1172] chain priority cannot be set by a defined variable
bugzilla-daemon at netfilter.org
bugzilla-daemon at netfilter.org
Wed Jun 26 16:25:04 CEST 2019
https://bugzilla.netfilter.org/show_bug.cgi?id=1172
Tercio Gaudencio Filho <terciofilho at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |terciofilho at gmail.com
--- Comment #2 from Tercio Gaudencio Filho <terciofilho at gmail.com> ---
This error also occurs when setting a chain policy:
define DEFAULT_POLICY = "drop"
add chain ip filter input { type filter hook input priority 0; policy
$DEFAULT_POLICY; }
This is useful when we have a separated file to override defaults, like:
/etc/nftables.rules:
#----------------------------------------------------------
define DEFAULT_POLICY = "drop"
include "/etc/defaults/nftables.rules"
add chain ip filter input { type filter hook input priority 0; policy
$DEFAULT_POLICY; }
#----------------------------------------------------------
/etc/defaults/nftables.rules:
#----------------------------------------------------------
redefine DEFAULT_POLICY = "accept"
#----------------------------------------------------------
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190626/af5f0bd1/attachment.html>
More information about the netfilter-buglog
mailing list