Migrate to nftables #1

New issue

Open

opened 2019-06-04 16:28:36 +02:00 by Ghost · 2 comments

Ghost commented

2019-06-04 16:28:36 +02:00

https://wiki.nftables.org/wiki-nftables/index.php/Moving_from_iptables_to_nftables

benpro added the

enhancement

label 2019-07-18 10:53:26 +02:00

Ghost commented

2020-08-31 17:20:21 +02:00

Author

This is just the early stage but I suggest you check out the nftables branch and see for yourself.

I worked a bit on an nftables version of minifirewall lately. I know it would have been better to start from scratch but the idea is to keep the exact same config syntax to ease the migration from iptables to nftables. This is just the early stage but I suggest you check out the nftables branch and see for yourself.

bwaegeneire commented

2021-07-20 16:09:37 +02:00

Owner

nftables isn't atomic, for it to be so we need not to call the nftables several times and instead generate a nftables configuration file. This change should be quite easy to make, it's still a middle ground between switching to nftables syntax.

`nftables` isn't atomic, for it to be so we need not to call the nftables several times and instead generate a nftables configuration file. This change should be quite easy to make, it's still a middle ground between switching to nftables syntax. - https://wiki.nftables.org/wiki-nftables/index.php/Atomic_rule_replacement - https://wiki.nftables.org/wiki-nftables/index.php/Scripting