nftables vs iptables on Debian

There is no versus – nftables will be successor of iptables.
You might know ebtables, iptables, ip6tables, arptables – in future there will be an abstraction layer for ipv4, ipv6, arp, bridge hazzle to enable icmp ping only for example and further nice firewall rules.
For easier upgrade there are translation-wrapper existing to move from iptables to nftables. Still under development, but great work so far..

Debian users should read this: https://wiki.debian.org/nftables

Links

Leave a Reply

Your email address will not be published. Required fields are marked *