I experimented a little with nftables, even though it's not clear whether it will ever completely replace iptables, especially after the news about bpfilter, but it was an interesting exercise anyways.
After converting some iptables rules, I looked at how others were using nftables to write a more idiomatic configuration; I found some ruleset for a host firewall, and I tried to add them to my configuration.
When testing those rules I found that some ICMPv6 packets were not being matched as I would have expected.
Recent comments
25 weeks 1 day ago
39 weeks 5 days ago
39 weeks 5 days ago
39 weeks 5 days ago
1 year 4 weeks ago
1 year 7 weeks ago
1 year 7 weeks ago
1 year 7 weeks ago
2 years 18 weeks ago
2 years 22 weeks ago