[ale] Firewalld is incomplete
Jim Kinney
jim.kinney at gmail.com
Thu Jan 31 16:43:37 EST 2019
Hmm. Looks like iptables has not been dropped. My Fedora 29 installs:
nftables-0.9.0-2.fc29.x86_64ebtables-2.0.10-28.fc29.x86_64iptables-
1.8.0-3.fc29.x86_64
Apparently the different tools can all be used to manipulate the
netfilter subsystem in the kernel.
But, yes, for some loosely defined value of "using", you are correct
that nftables is the replacement.
By the time I wrap my head of _that_ it will all be run in systemd
anyway so I won't need to do anything :-}
On Thu, 2019-01-31 at 15:03 -0600, Preston via Ale wrote:
> On 1/26/2019 8:17 PM, Jim Kinney via Ale wrote:<snipped>
> > The firewall was overdue for replacement... This is done with
> > several iptables entries for nat and portforwarding.
>
> Wait, I thought we were supposed to be using nftables nowadays.
> Preston
--
James P. Kinney III
Every time you stop a school, you will have to build a jail. What you
gain at one end you lose at the other. It's like feeding a dog on his
own tail. It won't fatten the dog.
- Speech 11/23/1900 Mark Twain
http://heretothereideas.blogspot.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.ale.org/pipermail/ale/attachments/20190131/14fd6d9c/attachment.html>
More information about the Ale
mailing list