[pkg-netfilter-team] Bug#887642: Fwd: nftables: nft flush map error
ad^2
adsquaired at gmail.com
Fri Jan 19 14:21:39 UTC 2018
Unfortunately this does not work for me using the exact commands.
root at nftables-router:~# nft list ruleset
root at nftables-router:~# nft add table inet filter
root at nftables-router:~# nft add map inet filter m1 { type ipv4_addr :
verdict \; }
root at nftables-router:~# nft list ruleset
table inet filter {
map m1 {
type ipv4_addr : verdict
}
}
root at nftables-router:~# nft add element inet filter m1 { 1.1.1.1 : accept }
root at nftables-router:~# nft list ruleset
table inet filter {
map m1 {
type ipv4_addr : verdict
elements = { 1.1.1.1 : accept }
}
}
root at nftables-router:~# nft flush map inet filter m1
Error: Could not process rule: Invalid argument
flush map inet filter m1
^^^^^^^^^^^^^^^^^^^^^^^^^
On Fri, Jan 19, 2018 at 7:35 AM, Arturo Borrero Gonzalez <arturo at debian.org>
wrote:
> On 18 January 2018 at 17:29, ad^2 <adsquaired at gmail.com> wrote:
> > -------
> > * Expected outcome: remove the elements from the map.
>
> This works here:
>
> % sudo nft add map inet filter m1 {type ipv4_addr : verdict \; }
> % sudo nft list ruleset
> table inet filter {
> map m1 {
> type ipv4_addr : verdict
> }
> }
> % sudo nft add element inet filter m1 { 1.1.1.1 : accept }
> % sudo nft list ruleset
> table inet filter {
> map m1 {
> type ipv4_addr : verdict
> elements = { 1.1.1.1 : accept }
> }
> }
> % sudo nft flush map inet filter m1
> % sudo nft list ruleset
> table inet filter {
> map m1 {
> type ipv4_addr : verdict
> }
> }
>
> Please refer to the docs for more information on the syntax:
> https://wiki.nftables.org
>
> Closing this bug report now. Feel free to reopen if you have any other
> question.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/pkg-netfilter-team/attachments/20180119/c274a7c4/attachment.html>
More information about the pkg-netfilter-team
mailing list