Skip to main content
Unix & Linux

Questions tagged [nftables]

Ask Question

nftables is the successor of iptables/ip6tables and available since Linux kernel version 3.13

276 questions
Newest Active Bountied Unanswered
1 vote
1 answer
56 views

I have a subnet 192.168.2.0/24 that is connected to another subnet 192.168.1.0/24 through a linux machine that has nftables configured. I have an application on subnet 192.168.2.0/24 that needs to ...
dlsa's user avatar
  • 113
0 votes
0 answers
41 views

this is in RHEL-8.10 x86-64 from a clean install from rhel-8.10-x86_64-dvd.iso and only using the public.xml file; the only things I do is # quad port nic with eno4 being my wan connection firewall-...
ron's user avatar
  • 9,184
0 votes
0 answers
29 views

I have what appears to be a unique situation that I am surprised is unique as it's common to most cablemodem implementations... I need to masquerade to the dynamic public address provided by $CABLECO ...
Owen DeLong's user avatar
  • 83
0 votes
0 answers
38 views

I want to create an nftables filter rule that drops traffic where the source and destination address are equal. Nftables only allows to compare addresses against constants or sets/maps. So I tried to ...
Aise's user avatar
  • 1
2 votes
1 answer
82 views

I'm currently covering nftables NAT rules. There are four of them, namely: snat: replace the packet's source address with a given one (clear); dnat: replace the packet's destination address with a ...
Gregor's user avatar
  • 23
1 vote
1 answer
70 views

Here is an edited nft ruleset that shows what appears to be a problem with the values in the packet counters. In the INPUT chain, the second rule counter shows more packets than the first rule counter....
jsotola's user avatar
  • 569
2 votes
1 answer
92 views

I have interfaces enp101s0f0u2u{1..3}, on each of which there is device responding to 192.168.8.1. I want a local processes to be able to reach all of them simultaneously. This is one process, so ...
Mihail Malostanidis's user avatar
  • 121
1 vote
2 answers
94 views

Using ferm (the iptables generator) I can make anonymous chains like this: saddr (1.2.3.4 2.3.4.5 3.4.5.6 4.5.6.7 5.6.7.8) @subchain { proto tcp dport (http https ssh) ACCEPT; proto udp dport ...
Cherrytopia's user avatar
  • 23
0 votes
0 answers
119 views

Is it possible to query interface address using nftables? For example, ip daddr = ifname_addr "eth0" counter accept Consider a system that has 4 interfaces: eth0 eth1 eth2 eth3. It is ...
EmErAJID's user avatar
  • 26
1 vote
0 answers
44 views

In this list of unsupported xtables features. xt_bpf is listed as one of the unsupported features. The comment says to "consider native interface". But what interface is being referred to ...
Philippe's user avatar
  • 599
0 votes
1 answer
252 views

I'm trying to make captive portal with nginx, hostapd, nftables, dnsmasq and python-flask. I have two main problems I'm not getting a popup on Android, but am on Iphone/OSX. I'm not sure how to ...
user3666672's user avatar
  • 11
0 votes
1 answer
94 views

As someone who hasn't hammered in all the parts of the OSI layers, I got quite frustrated with the documentation of bridge filtering in nftables: https://wiki.nftables.org/wiki-nftables/index.php/...
Caesar's user avatar
  • 25
1 vote
1 answer
431 views

I have two tables in nftables: $ sudo nft list tables table inet filter table ip nat The nat table can be listed just fine: $ sudo nft list table nat table ip nat { chain prerouting { ...
Mark Raymond's user avatar
  • 654
0 votes
0 answers
114 views

I'm new to nftables but have used iptables for quite a while now. While playing with nftables, I was thinking: "Hey, this is cool, I could have like a management table, where all the mngt stuff ...
Silviu Bajenaru Marcu's user avatar
  • 1
0 votes
1 answer
125 views

I have a machine with the network interface enp0s3 which is assigned the IPv4 address 192.168.20.254. Furthermore, on another machine there is a DNS server listening on the IPv4 address 192.168.20.10. ...
Binarus's user avatar
  • 3,951

15 30 50 per page
1
2 3 4 5
19