Re: Migrating to Debian - which firewall ?

["Alexander V. Makartsev" <avbetev@gmail.com>]

On 1/19/26 14:49, Nicolas Kovacs wrote:

> Hi,
>       
>       
>       I'm a long-time Linux user (two and a half decades since Slackware
>       7.1). I've been using RHEL clones mainly for the last ten years or
>       so, on desktops as well as servers (local and Internet-facing).
>       For firewalling I simply chose the default Firewalld.
>       
>       
>       I understand under Debian there are different possibilities to
>       handle firewalls. As far as I understand, ufw (Uncomplicated
>       firewall) seems to be the default, though Firewalld seems to be an
>       option.
>       
>       
>       Any recommendations ? 
    You can use pure "iptables" and "iptables-persistent" as a third
    option. It will be more efficient to learn iptables syntax and use
    it on any distro than learning syntax of a different wrappers for
    iptables like ufw and the others.
    Develop a simple ruleset and manage it with command line utils or
    directly edit the rules files with text editor.
    
    There is also a new kid around called "nft" which should replace
    iptables, but its syntax is super weird and non-intuitive for me, so
    I consider it a downgrade.
    Luckily iptables` syntax still supported via iptables-to-nft rules
    translation with support for the most of iptables extensions, so for
    the time being iptables syntax will stay available for use.

--

 With kindest regards, Alexander.

 Debian - The universal operating system
 https://www.debian.org