16 #include <netinet/in.h>
17 #include <sys/types.h>
22 #include <linux/netfilter/nf_tables.h>
24 #include <libmnl/libmnl.h>
25 #include <libnftnl/table.h>
26 #include <libnftnl/common.h>
28 int main(
int argc,
char *argv[])
30 struct mnl_socket *nl;
31 char buf[MNL_SOCKET_BUFFER_SIZE];
34 struct nft_table *t = NULL;
39 struct nft_parse_err *err;
42 printf(
"Usage: %s <xml-file>\n", argv[0]);
46 fd = open(argv[1], O_RDONLY);
52 if (read(fd, xml,
sizeof(xml)) < 0) {
59 t = nft_table_alloc();
65 err = nft_parse_err_alloc();
71 if (nft_table_parse(t, NFT_PARSE_XML, xml, err) < 0) {
72 nft_parse_perror(
"Unable to parse XML file", err);
76 nft_table_snprintf(reprint,
sizeof(reprint), t, NFT_OUTPUT_XML, 0);
77 printf(
"Parsed:\n%s\n", reprint);
79 family = nft_table_attr_get_u32(t, NFT_TABLE_ATTR_FAMILY);
83 nlh = nft_table_nlmsg_build_hdr(buf, NFT_MSG_NEWTABLE, family,
84 NLM_F_CREATE|NLM_F_ACK, seq);
85 nft_table_nlmsg_build_payload(nlh, t);
87 nft_parse_err_free(err);
89 nl = mnl_socket_open(NETLINK_NETFILTER);
91 perror(
"mnl_socket_open");
95 if (mnl_socket_bind(nl, 0, MNL_SOCKET_AUTOPID) < 0) {
96 perror(
"mnl_socket_bind");
99 portid = mnl_socket_get_portid(nl);
101 if (mnl_socket_sendto(nl, nlh, nlh->nlmsg_len) < 0) {
102 perror(
"mnl_socket_send");
106 ret = mnl_socket_recvfrom(nl, buf,
sizeof(buf));
108 ret = mnl_cb_run(buf, ret, seq, portid, NULL, NULL);
111 ret = mnl_socket_recvfrom(nl, buf,
sizeof(buf));
118 mnl_socket_close(nl);