netfilter.org states that "nftables is the project that aims to replace the existing {ip,ip6,arp,eb}tables framework." The nftables kernel code was merged into the mainline kernel in January 2014. So it's time to get started with the <b>new</b> Linux firewall framework on openSUSE.

<ul> <li><a href="http://netfilter.org/projects/nftables/">netfilter.org about nftables</a></li> <li><a href="http://en.wikipedia.org/wiki/Nftables">Wikipedia about nftables</a></li> </ul>

One idea at the end of hackweek would be to have a radio button inside the YaST Firewall module to generate either iptables or nftables output rules.

<center> <h2>DO NOT ENTER</h2> <h3>Firewalling with <b>nftables</b></h3> <img src="https://farm3.staticflickr.com/2317/2329483946_6b2f9b4082_z_d.jpg"> <p>Photo by <a href="https://www.flickr.com/photos/gnu1742/">gnu1742</a> </center>

Looking for mad skills in:

Nothing? Add some keywords!

This project is part of:

Hack Week 12


Comments

  • mrostecki
    6 months ago by mrostecki | Reply

    Maybe we can consider enabling nftables as the default firewalld backend as a part of this project? We tried it once year ago, we failed because of some error from Docker. But it would be nice to try again.

Similar Projects

This project is one of its kind!