iptables keeps packet and byte counters for each rule, and these can
be quite useful for various purposes. Unfortunately, when ferm
applies its ruleset, all the counters get zeroed.

iptables does allow counters to be restored for each rule.
Mightn't it be possible then that ferm upon flushing the rules saves
all the counters and then tries to restore them for each rule for
which a counter was previously known? I could imagine this to be as
simple as hashing the rule, storing the counters against this hash,
and upon restore, setting counters for all rules for which a hash
can be found.

Thanks for your consideration,

Control: tags -1 help
thanks

With ferm's upstream development having slowed down, it is unlikely that
Upstream would implement this. And I don't want to flood the upstream
issue tracker with wishlist requests.

If this is still important for you, please consider filing an upstream
request yourself.

A patch implementing this would be appreciated. Therefore tagging this
bug "help".

Greetings
Marc

Control: tags -1 help
thanks

With ferm's upstream development having slowed down, it is unlikely that
Upstream would implement this. And I don't want to flood the upstream
issue tracker with wishlist requests.

If this is still important for you, please consider filing an upstream
request yourself.

A patch implementing this would be appreciated. Therefore tagging this
bug "help".

Greetings
Marc

Regarding the following, written by "Marc Haber" on 2025-05-28 at 16:27 Uhr +0200:

I've moved to nft, and while I would love to have continued using ferm,
it doesn't seem like that will happen.

Regarding the following, written by "Marc Haber" on 2025-05-28 at 16:27 Uhr +0200:

I've moved to nft, and while I would love to have continued using ferm,
it doesn't seem like that will happen.