Re: Moving from iptables to nftables

To: debian-user@lists.debian.org
Subject: Re: Moving from iptables to nftables
From: Georgi Naplatanov <gosho@oles.biz>
Date: Fri, 2 Apr 2021 13:31:31 +0300
Message-id: <[🔎] 2f376607-abc7-74cd-645a-a4f71f833ee8@oles.biz>
In-reply-to: <[🔎] CAGiORHegqVXnvrCogJjPPuPQRjKEYuv1OysnvkZTmVFx7uK5WQ@mail.gmail.com>
References: <[🔎] CAGiORHegqVXnvrCogJjPPuPQRjKEYuv1OysnvkZTmVFx7uK5WQ@mail.gmail.com>

On 4/2/21 12:23 PM, William Torrez Corea wrote:
> Actually i'm moving/migrating from the old iptables/xtables (legacy)
> world to the new nftables framework.
> 
> I execute step by step the migration process:
> 
>  1. generate a translation of an iptables/ip6tables command to know the
>     nftables equivalent
>  2. Translate the whole ruleset in a single run 
> 
> I using the nf_tables compat backend. I suppose that translation to
> native nftables syntax is done if available but I don't get any result.
> 
> *sudo ebtables-nft -L*
> *
> *
> *Bridge table: filter
> 
> Bridge chain: INPUT, entries: 0, policy: ACCEPT
> 
> Bridge chain: FORWARD, entries: 0, policy: ACCEPT
> 
> Bridge chain: OUTPUT, entries: 0, policy: ACCEPT*
> 
> 


Hi William,

if your firewall configuration is not too complex then you can use
"gufw" GUI program to set up your firewall. gufw is GUI for ufw (Ubuntu
FireWall) and both are available in Debian repository.

HTH

Kind regards
Georgi

Reply to:

References:
- Moving from iptables to nftables
  - From: William Torrez Corea <willitc9888@gmail.com>

Prev by Date: Re: xsane can't see Brother ADS-2700W scanner
Next by Date: Re: Moving from iptables to nftables
Previous by thread: Moving from iptables to nftables
Next by thread: Re: Moving from iptables to nftables
Index(es):
- Date
- Thread