* Atomic ruleset update through libnftables
@ 2026-02-24 10:54 Subham Pal
2026-02-24 12:57 ` Florian Westphal
0 siblings, 1 reply; 2+ messages in thread
From: Subham Pal @ 2026-02-24 10:54 UTC (permalink / raw)
To: netfilter
I am writing a firewall program and intending to configure nftables
using libnftables userspace library. The plan is to use
nft_run_cmd_from_buffer function call, passing JSOn input to its
buffer.
If I provide a set of rule updates to this function, will they be
applied atomically? The manpage does not seem to elaborate on this.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Atomic ruleset update through libnftables
2026-02-24 10:54 Atomic ruleset update through libnftables Subham Pal
@ 2026-02-24 12:57 ` Florian Westphal
0 siblings, 0 replies; 2+ messages in thread
From: Florian Westphal @ 2026-02-24 12:57 UTC (permalink / raw)
To: Subham Pal; +Cc: netfilter
Subham Pal <subhampal789@gmail.com> wrote:
> I am writing a firewall program and intending to configure nftables
> using libnftables userspace library. The plan is to use
> nft_run_cmd_from_buffer function call, passing JSOn input to its
> buffer.
>
> If I provide a set of rule updates to this function, will they be
> applied atomically? The manpage does not seem to elaborate on this.
Yes, its applied atomically. You can validate by running 'nft monitor'
on another terminal, this will show you when a new generation/config
arrives, and what was added/removed as part of the update.
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2026-02-24 12:57 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2026-02-24 10:54 Atomic ruleset update through libnftables Subham Pal
2026-02-24 12:57 ` Florian Westphal
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox