nftables is now almost 10 years old! It's time to forget the bad experiences wit... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

nolist_policy on Sept 27, 2023 | parent | context | favorite | on: OpenBSD PF versus FreeBSD PF

nftables is now almost 10 years old! It's time to forget the bad experiences with iptables.

systems_glitch on Sept 28, 2023 [–]

I have -- I let the OpenBSD firewalls take care of it :P

Seriously though it's something I need to get familiar with, I do still have plenty of Linux boxes that face the public Internet and are currently dependent on iptables/ip6tables rulesets. The problem is I'm currently masking that pain with Ansible.

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact