In this article, we will cover the differences between nftables and iptables, and show examples for configuring your firewall rules in the new nftables syntax. If you have been using iptables for years and are not too thrilled with the idea of having to learn a brand new utility, don’t worry, we’ve got you covered in this guide. Now is a great time to learn nftables and update your existing iptables configuration. Nftables is becoming the recommended firewall of choice, and it behooves Linux administrators to update their repertoire. Change is slow in the Linux world, and outdated utilities often take a few years or longer to be phased out in favor of their upgraded counterparts. Nftables aims to replace all of these and be a centralized solution.Īlthough nftables has been included in the Linux kernel since 2014, it’s recently gaining more traction as adoption becomes more widespread. It was created as a remedy to the problems with iptables, namely scalability and performance.Īpart from a new syntax and some upgrades, you’ll find that it functions very similarly to its predecessor.Īnother justification for a new utility is that the iptables framework has become a little convoluted with iptables, ip6tables, arptables, and ebtables all providing different but similar functions.įor example, it’s simply inefficient to create IPv4 rules in iptables and IPv6 rules in ip6tables and keep the two in sync. The nftables is developed by Netfilter, the same organization that currently maintains iptables. But you may not yet be familiar with nftables, a newcomer meant to offer us some much-needed upgrades and ultimately replace the aging iptables. Every Linux administrator has surely worked with iptables, the longstanding Linux firewall that has served us well for many years.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |