From: Florian Westphal <f...@strlen.de> Date: Fri, 16 Feb 2018 17:14:08 +0100
> Any particular reason why translating iptables rather than nftables > (it should be possible to monitor the nftables changes that are > announced by kernel and act on those)? As Daniel said, iptables is by far the most deployed of the two technologies. Therefore it provides the largest environment for testing and coverage.
