On 18-10-2024 08:35, Jaron Kent-Dobias wrote:
On Thursday, 17 October 2024 at 21:16 (-0500), David C. Rankin wrote:
On 10/17/24 6:44 AM, Jaron Kent-Dobias wrote:
If nftables automatically uninstalls iptables as an indirect
dependency, then no, the default should not change. That would seem
t
On Thursday, 17 October 2024 at 21:16 (-0500), David C. Rankin wrote:
On 10/17/24 6:44 AM, Jaron Kent-Dobias wrote:
It's worth noting that nftables is not a newfangled piece of external
software – it's been mainlined in the Linux kernel since 2013, and was
intended to be the successor to legacy
On 18/10/24 7:46 am, David C. Rankin wrote:
From reading, it seems nftables is just larger and more complex
netfilter project (and yes it does more -- if you need it). Both
iptables and nftables are actively developed, so it's not like one is
deprecated.
No. Iptables (legacy) that Arch uses b
On 10/17/24 6:44 AM, Jaron Kent-Dobias wrote:
On Thursday, 17 October 2024 at 04:31 (-0500), David C. Rankin wrote:
On 10/17/24 3:35 AM, gerard.bi...@gmail.com wrote:
nftables is able to respond to iptables commands through the compatibility
layer.
iptables-nft is the packet for you.
I'm g
On Thursday, 17 October 2024 at 04:31 (-0500), David C. Rankin wrote:
On 10/17/24 3:35 AM, gerard.bi...@gmail.com wrote:
nftables is able to respond to iptables commands through the compatibility
layer.
iptables-nft is the packet for you.
I'm glad that's there, but then I have to ask myself
With the iptables-nft packet, you'll use nftables backend, not the iptables
one.
Look up the difference featurewise between the two, you'll be convicted.
Your legacy script, software can still talk iptables to your system, but
it's the nftables that answer.
If you switch to nftables compatible s
On 10/17/24 3:35 AM, gerard.bi...@gmail.com wrote:
nftables is able to respond to iptables commands through the compatibility
layer.
iptables-nft is the packet for you.
Thank you,
I'm glad that's there, but then I have to ask myself, why would I want to
run iptables via nftables through
nftables is able to respond to iptables commands through the compatibility
layer.
iptables-nft is the packet for you.
Le jeu. 17 oct. 2024 à 09:16, David C. Rankin a
écrit :
> On 10/14/24 8:49 AM, Martin Rys wrote:
> > Arch Linux still uses the legacy iptables backend, as opposed to the
> > n
On 10/14/24 8:49 AM, Martin Rys wrote:
Arch Linux still uses the legacy iptables backend, as opposed to the
nft backend that every other distribution uses.
I always thought the iptables default was the result if Arch's KISS philosophy
and I really appreciate it. I use iptables, ipset and fail2
Arch Linux still uses the legacy iptables backend, as opposed to the
nft backend that every other distribution uses.
This has been reported since 2021 with no response:
https://gitlab.archlinux.org/archlinux/packaging/packages/iptables/-/issues/1
To me it looks like a direct, simple migration, an
10 matches
Mail list logo
