23 Nov
2018
23 Nov
'18
7:12 p.m.
On 23 Nov 2018, at 18:11, Ed <ed-bitfolk(a)s5h.net> wrote:
The syntax is appealing. It mimics 'pf' which
I found very easy to read.
nftables seemed to a bit behind iptables, I could be wrong, if they're
at the same capability level now then I think maintaining iptables would
be less desirable. Might have been dreaming, did RH say they were were
going to use nftables for the next release?
It’s already in at least RHEL 7.6 (and, therefore, CentOS 7.6). It’s used underneath
firewalld, but can be used by itself, too.
Cheers,
Mike