Merge branch 'nftables' into 'master'

nftables + dependencies: new packages

This MR contains APKBUILDs for nftables and its libnftnl dependency. APKBUILDs have been adapted and trimmed from Alpine; the OpenRC scripts come indirectly from Gentoo via Alpine.

Tested on x86_64 by NAT'ing a couple of VM's to the outside world.

See merge request !145

1 files changed, 24 insertions, 0 deletions

diff --git a/user/nftables/nftables.confd b/user/nftables/nftables.confd
new file mode 100644
index 000000000..87fa8f2ea
--- /dev/null
+++ b/user/nftables/nftables.confd
@@ -0,0 +1,24 @@
+# Configuration for /etc/init.d/nftables
+
+# Location of file with nftables rules to restore on service start,
+# and save rules to on service stop when $save_on_stop is enabled.
+#rules_file="/etc/firewall.nft"
+
+# Options to pass to nft on save.
+#save_options="-n"
+
+# Save state on stopping nftables.
+#save_on_stop="yes"
+
+# Enable IPv4/IPv6 forwarding with the rules?
+# Note: If you want to enable forwarding only on selected interfaces,
+# keep this disabled and enable forwarding using /etc/sysctl.conf.
+#enable_forwarding="no"
+
+# If you need to log nftables messages as soon as nftables starts,
+# AND your logger does NOT depend on the network, then you may wish
+# to uncomment the next line.
+# If your logger depends on the network, and you uncomment this line
+# you will create an unresolvable circular dependency during startup.
+# After commenting or uncommenting this line, you must run 'rc-update -u'.
+#rc_use="logger"