#firewall #nftables #iptables #netfilter #nft

sys no-std nftnl-sys

Low level FFI bindings to libnftnl. Provides low-level userspace access to the in-kernel nf_tables subsystem

8 releases (5 breaking)

0.6.2 Sep 19, 2024
0.6.1 Feb 11, 2022
0.6.0 Nov 23, 2020
0.5.0 Jun 4, 2020
0.1.0 Sep 19, 2018

#563 in Unix APIs

Download history 5345/week @ 2024-08-19 5764/week @ 2024-08-26 5120/week @ 2024-09-02 2114/week @ 2024-09-09 4778/week @ 2024-09-16 4782/week @ 2024-09-23 3999/week @ 2024-09-30 2849/week @ 2024-10-07 4174/week @ 2024-10-14 4540/week @ 2024-10-21 3278/week @ 2024-10-28 3015/week @ 2024-11-04 4165/week @ 2024-11-11 4329/week @ 2024-11-18 4516/week @ 2024-11-25 2818/week @ 2024-12-02

15,972 downloads per month
Used in nftnl

MIT/Apache

290KB
6.5K SLoC

nftnl-sys

Low level FFI bindings to libnftnl, a userspace library providing a low-level netlink programming interface (API) to the in-kernel nf_tables subsystem.

See nftnl for a higher level safe abstraction.

Linking to libmnl and libnftnl

By default this crate uses pkg-config to find and link to its C dependencies, libmnl and libnftnl. To manually configure where to look for these libraries, set the environment variables LIBMNL_LIB_DIR and LIBNFTNL_LIB_DIR to point to the directories where libmnl.so (or libmnl.a) and libnftnl.so (or libnftnl.a) reside.

Selecting version of libnftnl

This crate has bindings for most versions of libnftnl. All bindings are generated by bindgen via the generate_bindings.sh script in this repository.

Only one version of libnftnl can be exposed via this crate. By default the crate exports the bindings for the oldest supported version (libnftnl-1.0.6). To get newer versions activate the corresponding features. See Cargo.toml for available features/versions.

So for example, to get bindings to libnftnl-1.0.9 depend on this crate like this:

[dependencies]
nftnl-sys = { version = "0.1", features = ["nftnl-1-0-9"] }

License: MIT/Apache-2.0

Dependencies