Re: Internet facing Firewalls mDNS UPnP SMB
On Monday, 05-08-2024 at 22:25 john doe wrote:
> On 8/5/24 12:50, George at Clug wrote:
> >
> >
> > On Monday, 05-08-2024 at 17:25 Michel Verdier wrote:
> >> On 2024-08-04, George at Clug wrote:
> >>
> >>> I think I finally have success (had to fix way too many typos).
> >>>
> >>> Please review, and please comment if it can be improved.
> >>
> >> Don't fix typo and instead rewrite your rules with nftables
> >> https://wiki.nftables.org/wiki-nftables/index.php/Moving_from_iptables_to_nftables
> >> It's so much easier and cleaner with nftables :)
> >>
> >>
> >
> > Thanks for the link, Michel, it had an interesting translation commands which I put to good use.
> >
> > There will be some new learning if I am going to be able to do as it suggests, "implement new nftables mechanisms such as sets, maps, verdict maps, concatenations and more".
> >
> > Down below is the output of the translation commands for my Iptables commands. Interesting but again, I will need to learn what this means, it does not look self explanatory. But hopefully, like everything computer related, it is usually not that complex, just you need to understand the new syntax and how to use it.
> >
>
> YOu realy need to be intimate with nftables, you might want to consider
> a frontend to nftables.
It would be nice if systems were not so complex that they required frontends to be usable.
I am feeling a little overwhelmed by how confusing nftables is, but that is how I felt about iptables before getting to a point I could set up a simple set of rules.
I am currently in the "Initial learning curve" phase.
>
> --
> John Doe
>
>
Reply to: