states that "nftables is the project that aims to replace the existing {ip,ip6,arp,eb}tables framework." The nftables kernel code was merged into the mainline kernel in January 2014. So it's time to get started with the <b>new</b> Linux firewall framework on openSUSE.

<ul> <li><a href=""> about nftables</a></li> <li><a href="">Wikipedia about nftables</a></li> </ul>

One idea at the end of hackweek would be to have a radio button inside the YaST Firewall module to generate either iptables or nftables output rules.

<h3>Firewalling with <b>nftables</b></h3>

Hack Week 12


  • mrostecki
    over 1 year ago by mrostecki | Reply

    Maybe we can consider enabling nftables as the default firewalld backend as a part of this project? We tried it once year ago, we failed because of some error from Docker. But it would be nice to try again.

