Migrate to nftables #1
Labels
No labels
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
No milestone
No project
No assignees
2 participants
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: evolix/minifirewall#1
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
https://wiki.nftables.org/wiki-nftables/index.php/Moving_from_iptables_to_nftables
I worked a bit on an nftables version of minifirewall lately. I know it would have been better to start from scratch but the idea is to keep the exact same config syntax to ease the migration from iptables to nftables.
This is just the early stage but I suggest you check out the nftables branch and see for yourself.
nftables
isn't atomic, for it to be so we need not to call the nftables several times and instead generate a nftables configuration file. This change should be quite easy to make, it's still a middle ground between switching to nftables syntax.