nftables: adds new package nftables in version 0.5

	- nftables is the replacement for iptables, arptables, ebtables

Signed-off-by: Andreas Geisenhainer <Andreas.Geisenhainer@atsonline.de>
[mol: add environment to avoid building docs]
Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>

1 files changed, 37 insertions, 0 deletions

diff --git a/rules/nftables.in b/rules/nftables.in
new file mode 100644
index 000000000..a08a78fb1
--- /dev/null
+++ b/rules/nftables.in
@@ -0,0 +1,37 @@
+## SECTION=networking
+
+menuconfig NFTABLES
+	tristate
+	prompt "nftables                      "
+	select LIBGMP if !NFTABLES_MGMP
+	select READLINE
+	select LIBMNL
+	select LIBNFTNL
+	help
+	  nftables is the project that aims to replace the existing
+	  {ip,ip6,arp,eb}tables framework. Basically, this project provides
+	  a new packet filtering framework, a new userspace utility and also
+	  a compatibility layer for {ip,ip6}tables. nftables is built upon
+	  the building blocks of the Netfilter infrastructure such as the
+	  existing hooks, the connection tracking system, the userspace
+	  queueing component and the logging subsystem.
+	  Don't forget to enable nf_tables in kernel.
+
+if NFTABLES
+
+config NFTABLES_DEBUG
+	bool
+	default y
+	prompt "enable debug"
+
+
+config NFTABLES_MGMP
+	bool
+	prompt "use mini-GMP"
+	# broken in v0.5 (seems to be fixed some time after)
+	depends on BROKEN
+	help
+	  use the nftables build-in mini-GMP instead of linking to the shared
+	  libgmp. (may reduce debugging verbosity on some files)
+
+endif