Skip to main content
Unix & Linux

Questions tagged [nftables]

Ask Question

nftables is the successor of iptables/ip6tables and available since Linux kernel version 3.13

275 questions
Newest Active Bountied Unanswered
0 votes
0 answers
36 views

this is in RHEL-8.10 x86-64 from a clean install from rhel-8.10-x86_64-dvd.iso and only using the public.xml file; the only things I do is # quad port nic with eno4 being my wan connection firewall-...
ron's user avatar
  • 9,175
0 votes
0 answers
38 views

I want to create an nftables filter rule that drops traffic where the source and destination address are equal. Nftables only allows to compare addresses against constants or sets/maps. So I tried to ...
Aise's user avatar
  • 1
1 vote
1 answer
61 views

Here is an edited nft ruleset that shows what appears to be a problem with the values in the packet counters. In the INPUT chain, the second rule counter shows more packets than the first rule counter....
jsotola's user avatar
  • 567
1 vote
2 answers
88 views

Using ferm (the iptables generator) I can make anonymous chains like this: saddr (1.2.3.4 2.3.4.5 3.4.5.6 4.5.6.7 5.6.7.8) @subchain { proto tcp dport (http https ssh) ACCEPT; proto udp dport ...
Cherrytopia's user avatar
  • 23
1 vote
0 answers
42 views

In this list of unsupported xtables features. xt_bpf is listed as one of the unsupported features. The comment says to "consider native interface". But what interface is being referred to ...
Philippe's user avatar
  • 599
0 votes
1 answer
94 views

As someone who hasn't hammered in all the parts of the OSI layers, I got quite frustrated with the documentation of bridge filtering in nftables: https://wiki.nftables.org/wiki-nftables/index.php/...
Caesar's user avatar
  • 25
0 votes
0 answers
108 views

I'm new to nftables but have used iptables for quite a while now. While playing with nftables, I was thinking: "Hey, this is cool, I could have like a management table, where all the mngt stuff ...
Silviu Bajenaru Marcu's user avatar
  • 1
1 vote
0 answers
773 views

I am running a Ubuntu Server and I am trying to allow some traffic to pass from one interface to another. The server is configured to route traffic, this is the topology: 172.16.0.0/12 --- ...
Marcus's user avatar
  • 121

15 30 50 per page
1
2 3 4 5
19