Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes

From: Alex Forster
Date: Tue Jul 27 2021 - 17:45:02 EST

Next message: Stephen Boyd: "Re: [RESEND PATCH v2 3/3] rpmcc: Add support for SM6125"
Previous message: Rajat Asthana: "[PATCH] ath9k_htc: Add a missing spin_lock_init()"
In reply to: Pablo Neira Ayuso: "Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes"
Next in thread: Pablo Neira Ayuso: "Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> I'm not refering to nftables, I'm refering to iptables-nft.

Possibly I'm misunderstanding. Here's a realistic-ish example of a
rule we might install:

iptables -A INPUT -d 11.22.33.44/32 -m bpf --bytecode "43,0 0 0
0,48 0 0 0,...sic..." -m statistic --mode random --probability 0.0001
-j NFLOG --nflog-prefix "drop 10000 c37904a83b344404
e4ec6050966d4d2f9952745de09d1308"

Is there a way to install such a rule with an nflog prefix that is >63 chars?

Next message: Stephen Boyd: "Re: [RESEND PATCH v2 3/3] rpmcc: Add support for SM6125"
Previous message: Rajat Asthana: "[PATCH] ath9k_htc: Add a missing spin_lock_init()"
In reply to: Pablo Neira Ayuso: "Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes"
Next in thread: Pablo Neira Ayuso: "Re: [PATCH] netfilter: xt_NFLOG: allow 128 character log prefixes"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]