I experimented a little with nftables, even though it's not clear whether it will ever completely replace iptables, especially after the news about bpfilter, but it was an interesting exercise anyways.
After converting some iptables rules, I looked at how others were using nftables to write a more idiomatic configuration; I found some ruleset for a host firewall, and I tried to add them to my configuration.
When testing those rules I found that some ICMPv6 packets were not being matched as I would have expected.
Recent comments
1 sec ago
10 hours 52 min ago
1 week 5 days ago
2 weeks 5 hours ago
5 weeks 1 day ago
12 weeks 6 days ago
24 weeks 2 days ago
28 weeks 3 days ago
28 weeks 5 days ago
30 weeks 5 days ago