Re: Migrating to Debian - which firewall ?

To: debian-user@lists.debian.org
Subject: Re: Migrating to Debian - which firewall ?
From: Kamil Jońca <kjonca@o2.pl>
Date: Mon, 19 Jan 2026 15:48:49 +0100
Message-id: <[🔎] 87wm1dbqum.fsf@alfa.kjonca>
In-reply-to: <MeVCi-bGX3-9@gated-at.bofh.it> (Alexander V. Makartsev's message of "Mon, 19 Jan 2026 12:30:02 +0100")
References: <MeUdb-bFV0-13@gated-at.bofh.it> <MeVCi-bGX3-9@gated-at.bofh.it>

"Alexander V. Makartsev" <avbetev@gmail.com> writes:

[...]
>
> There is also a new kid around called "nft" which should replace
> iptables, but its syntax is super weird and non-intuitive for me, so I
> consider it a downgrade.

I disagree. I was happy iptables user and some time ago I migrated my
rules to nftables. Indeed this is no 1-1 migration, you have to rethink
your rules, but IMO this is more comfortable.
The main difference (IMO) is that most your dynamic logic shoud go to
sets not to the rules itself.
KJ

-- 
http://wolnelektury.pl/wesprzyj/teraz/
Who goeth a-borrowing goeth a-sorrowing.
		-- Thomas Tusser

Reply to:

Follow-Ups:
- Re: Migrating to Debian - which firewall ?
  - From: Dan Ritter <dsr@randomstring.org>

Prev by Date: Re: Migrating to Debian - which firewall ?
Next by Date: Re: Migrating to Debian - which firewall ?
Previous by thread: Re: Migrating to Debian - which firewall ?
Next by thread: Re: Migrating to Debian - which firewall ?
Index(es):
- Date
- Thread