Nftables: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 3: | Line 3: | ||
nftables is the successor of [[Linux iptables|iptables]]. The netfilter project enables packet filtering, network address [and port] translation (NA[P]T), packet logging, userspace packet queueing and other packet mangling. | nftables is the successor of [[Linux iptables|iptables]]. The netfilter project enables packet filtering, network address [and port] translation (NA[P]T), packet logging, userspace packet queueing and other packet mangling. | ||
Netfilter tables (nftables) is the default firewall shipped with modern [[Linux]] distros. It's available on Fedora and RHEL 8, the latest Debian, and many others | Netfilter tables (nftables) is the default firewall shipped with modern [[Linux]] distros. It's available on Fedora and RHEL 8, the latest Debian, and many others.<ref>https://opensource.com/article/22/7/nftwatch-linux-firewall</ref> | ||
== monitoring netfilter == | == monitoring netfilter == | ||
Latest revision as of 13:25, 6 May 2024
netfilter (nftables)
nftables is the successor of iptables. The netfilter project enables packet filtering, network address [and port] translation (NA[P]T), packet logging, userspace packet queueing and other packet mangling.
Netfilter tables (nftables) is the default firewall shipped with modern Linux distros. It's available on Fedora and RHEL 8, the latest Debian, and many others.[1]
monitoring netfilter
- nftwatch - https://github.com/flyingrhinonz/nftwatch provides several features like reorders and reformats the nftables output to make it more readable