My home and office workstation have complicated networking, but their firewall rules are actually relatively simple. Maybe it's time to switch them over from annoying iptables to the new shiny nftables stuff, which might at least be more readable (and involve less repetition).

· · Web · 2 · 0 · 0
@cks Naah. I'll just hold out until eBPF-based tools are out there. The nftables isn't enough of a jump unless you're a service provider and need specific features right now.

I was enthusiastic about nftables first, but ended up being disappointed. ymmv

Sign in to participate in the conversation

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!