On 10/29/18 11:04 AM, Vincas Dargis wrote: > On 2018-10-24 23:34, Tom Eastep wrote: >> On 10/24/18 9:18 AM, Vincas Dargis wrote: >>> What does that mean with regards to Shorewall? Could there potentially >>> be incompatibilities on how Shorewall expects Linux firewall to behave? >> >> There could certainly be incompatibilities that effect Shorewall and/or >> Shorewall6. > > Any plans to handle this issue? Maybe worth documenting/noting that > Debian Buster users are encouraged to use `update-alternatives` system > for enabling "old" backend? > > Or this should be handled by package maintainers?
My opinion is that we should address issues as they arise after this iptables change migrates to testing. nf_tables is the direction in which the Netfilter team are going, and if we immediately direct users to switch to the old backend, we only delay resolution of compatibility issues. Eventually, the old backend will go away, so we want all known issues with the new backend to be resolved by that time. I've copied the Debian Shorewall Maintainer for his input. -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
