Fix ipv6 marking syntax. Create examples folder.

The idea is that further examples will are to be put inside examples/ to
avoid cluttering the main README.

Also fix an nft typo about ipv6 marking.

Author: pvxe

README.md

@@ -58,7 +58,7 @@ chain geoip-mark-output {
 	type filter hook output priority -1; policy accept;
 
 	meta mark set ip daddr map @geoip4
-	meta mark set ip daddr map @geoip6
+	meta mark set ip6 daddr map @geoip6
 }
 ```
 
@@ -87,7 +87,7 @@ table inet geoip {
 		type filter hook input priority -1; policy accept;
 
 		meta mark set ip saddr map @geoip4
-		meta mark set ip saddr map @geoip6
+		meta mark set ip6 saddr map @geoip6
 	}
 
 	chain input {

examples/README.md

@@ -0,0 +1,14 @@
+You can try out an example by executing it (probably you will need `sudo`).
+Assuming nft is located at `/usr/sbin`.
+
+```
+sudo ./example.nft
+```
+
+You can specify an additional folder for `nft` to lookup for files with `-I` so you
+don't need to modify the includes. This should be the folder in which you saved the
+script output.
+
+```
+sudo ./example.nft [ -I path/to/script/output ]
+```

examples/accounting.nft

@@ -0,0 +1,25 @@
+#!/usr/sbin/nft -f
+
+# Accounting of incoming Spanish traffic, ipv4 and ipv6
+
+flush ruleset
+
+table inet filter {
+
+	include "geoip-def-all.nft"
+	include "geoip-ipv4.nft"
+	include "geoip-ipv6.nft"
+
+	chain geoip-mark-input {
+		type filter hook input priority -1; policy accept;
+
+		meta mark set ip saddr map @geoip4
+		meta mark set ip6 saddr map @geoip6
+	}
+
+	chain input {
+		type filter hook input priority filter; policy accept;
+
+		mark $ES counter comment "incoming-ES"
+	} 
+}