Difference between revisions of "Data types"
Jump to navigation
Jump to search
m (→Data types used in Netfilter: alphabetized) |
(Add ether_type) |
||
| Line 19: | Line 19: | ||
|- style="vertical-align:top;" | |- style="vertical-align:top;" | ||
| devgroup_type | | devgroup_type | ||
| Device group (32 bit | | Device group (32 bit integer). | ||
| [[Matching_packet_metainformation |meta]] | | [[Matching_packet_metainformation |meta]] | ||
| Can be specified numerically or as symbolic name defined in /etc/iproute2/group. | | Can be specified numerically or as symbolic name defined in /etc/iproute2/group. | ||
|- style="vertical-align:top;" | |||
| ether_type | |||
| [https://en.wikipedia.org/wiki/EtherType EtherType] (16 bit integer). | |||
| [[Matching_packet_metainformation |meta]] | |||
| [https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/include/uapi/linux/if_ether.h ether.h] has known types. | |||
|- style="vertical-align:top;" | |- style="vertical-align:top;" | ||
Revision as of 03:30, 5 February 2021
Data types used in Netfilter
The following data types are used in nft selectors:
| Netfilter Data Types | |||
|---|---|---|---|
| Data Type | Description | nft Selector(s) | Notes |
| day | Either a day of week ("Monday", "Tuesday", etc.), or an integer between 0 and 6. Strings are matched case-insensitively, and a full match is not expected (e.g. "Mon" would match "Monday"). When an integer is given, 0 is Sunday and 6 is Saturday. | meta | |
| devgroup_type | Device group (32 bit integer). | meta | Can be specified numerically or as symbolic name defined in /etc/iproute2/group. |
| ether_type | EtherType (16 bit integer). | meta | ether.h has known types.
|
| gid | Group ID (32 bit integer). | meta | Can be specified numerically or as group name. |
| hour | A string representing an hour in 24-hour format. Seconds can optionally be specified. For example, 17:00 and 17:00:00 would be equivalent. | meta | |
| iface_index | Interface index (32 bit integer). | meta | Can be specified numerically or as name of an existing interface.
Use ifname instead for interfaces whose name and/or index can change (i.e. those that appear / disappear dynamically). |
| iface_type | Interface type (16 bit integer). | meta | |
| ifkind | Interface kind (16 byte string). | meta | List of ifkinds is in man 8 ip-link TYPES section. |
| ifname | Interface name (16 byte string). | meta | Does not have to exist.
Slower than iface_index but good for interfaces that can dynamically appear / disappear. |
| pkt_type | Packet type:
|
meta | |
| realm | Routing Realm (32 bit integer). | meta | Can be specified numerically or as symbolic name defined in /etc/iproute2/rt_realms. |
| time | Either an integer or a date in ISO format. For example: "2019-06-06 17:00". Hour and seconds are optional and can be omitted if desired. If omitted, midnight will be assumed. The following three would be equivalent: "2019-06-06", "2019-06-06 00:00" and "2019-06-06 00:00:00". When an integer is given, it is assumed to be a UNIX timestamp. | meta | |
| uid | User ID (32 bit integer). | meta | Can be specified numerically or as user name. |