Révision 2ad7193b
Support logging to NFLOG group
| REFERENCE.md | ||
|---|---|---|
| 171 | 171 |
* [`log_prefix`](#-nftables--log_prefix) |
| 172 | 172 |
* [`log_discarded`](#-nftables--log_discarded) |
| 173 | 173 |
* [`log_limit`](#-nftables--log_limit) |
| 174 |
* [`log_group`](#-nftables--log_group) |
|
| 174 | 175 |
* [`reject_with`](#-nftables--reject_with) |
| 175 | 176 |
* [`in_out_conntrack`](#-nftables--in_out_conntrack) |
| 176 | 177 |
* [`in_out_drop_invalid`](#-nftables--in_out_drop_invalid) |
| ... | ... | |
| 331 | 332 |
|
| 332 | 333 |
Default value: `'3/minute burst 5 packets'` |
| 333 | 334 |
|
| 335 |
##### <a name="-nftables--log_group"></a>`log_group` |
|
| 336 |
|
|
| 337 |
Data type: `Optional[Integer]` |
|
| 338 |
|
|
| 339 |
When specified, the Linux kernel will pass the packet to nfnetlink_log |
|
| 340 |
which will send the log through a netlink socket to the specified group. |
|
| 341 |
|
|
| 342 |
Default value: `undef` |
|
| 343 |
|
|
| 334 | 344 |
##### <a name="-nftables--reject_with"></a>`reject_with` |
| 335 | 345 |
|
| 336 | 346 |
Data type: `Variant[Boolean[false], Pattern[/icmp(v6|x)? type .+|tcp reset/]]` |
Formats disponibles : Unified diff