| Pablo M. Bermudo Garay | 340105f | 2017-03-31 14:34:38 +0200 | [diff] [blame] | 1 | iptables-translate -t nat -A PREROUTING -p tcp --dport 80 -j NFQUEUE --queue-num 30 |
| 2 | nft add rule ip nat PREROUTING tcp dport 80 counter queue num 30 |
| 3 | |
| 4 | iptables-translate -A FORWARD -j NFQUEUE --queue-num 0 --queue-bypass -p TCP --sport 80 |
| 5 | nft add rule ip filter FORWARD tcp sport 80 counter queue num 0 bypass |
| 6 | |
| 7 | iptables-translate -A FORWARD -j NFQUEUE --queue-bypass -p TCP --sport 80 --queue-balance 0:3 --queue-cpu-fanout |
| 8 | nft add rule ip filter FORWARD tcp sport 80 counter queue num 0-3 bypass,fanout |