Skip to main content
Ask Ubuntu

Questions tagged [nftables]

Ask Question

nftables is a project providing packet filtering and packet classification on Linux

18 questions
Newest Active Bountied Unanswered
Filter by
Sorted by
Tagged with
9 votes
2 answers
18k views

Ubuntu 21.10 switched to nftables, so why is iptables still available?

According to 21.10 release notes: nftables is now the default backend for the firewall. However, having installed Ubuntu 21.10, I can see I still have iptables (and ufw) installed by default: m@m-...
gaazkam's user avatar
gaazkam
  • 295
8 votes
2 answers
35k views

Warning: iptables-legacy tables present

I have migrated my Ubuntu Focal server firewall backend from legacy iptables to netfilter, by running update-alternatives --set iptables /usr/sbin/iptables-nft and rebooting the server. Now all tables ...
iBug's user avatar
iBug
  • 1,599
4 votes
0 answers
2k views

Completely disable IPTables

I have been playing around with switching to nftables (purely as a learning exercise). I have it all working perfectly except for the fact I have to manually unload iptable_nat from the kernel after a ...
Cipher Menial's user avatar
Cipher Menial
  • 171
3 votes
3 answers
6k views

Where to get nftables?

As far as I understand the kernel facility nftables exists in the kernel that comes with Ubuntu 14.04. As is proven by the following two commands: # grep -E '(NF_TABLES|NFT_)' /boot/config-$(uname -r)...
0xC0000022L's user avatar
0xC0000022L
  • 5,722
3 votes
2 answers
2k views

Update from 20.04 to 20.10 - iptables not replaced with nftables

According to this article on itsfoss.com nftables should replace iptables after updating from 20.04 to 20.10. In my case not only is iptables still installed, but also nftables is missing. Does it ...
Łukasz Sypniewski's user avatar
Łukasz Sypniewski
  • 835
3 votes
1 answer
4k views

firewalld - No such file or directory

After upgrading from Ubuntu 20.04 to 20.10 I want to finally get started with firewalld instead of the old manual iptables approach, but all I get from the service is the following, which also breaks ...
Ancoron's user avatar
Ancoron
  • 141
3 votes
2 answers
1k views

Can someone explain interactions between iptables, nftables and bpf?

I'm on Ubuntu 20.10 trying to do some routing config for my virtual network, and I'm confused about the interactions between the 3 main types of firewall technology used in modern Linux distros, ...
Avery Freeman's user avatar
Avery Freeman
  • 1,286
2 votes
1 answer
3k views

ufw-init errors out with Bad argument DROP

I don't know unfortunately when it stopped working, because I was using it as a fire and forget solution. Not so long ago I checked it with gufw and was stunned to realize my machine is naked. root@...
Csaba Toth's user avatar
Csaba Toth
  • 1,418
1 vote
2 answers
2k views

NFTables and g(ufw)

I am going to install Xubuntu 22.04 on one of my computers and i have a question about firewall. As i understand Ubuntu use NFTables now. I have noticed some information about Debian (which is base ...
SteelRat's user avatar
SteelRat
  • 21
1 vote
1 answer
136 views

What are the use cases of "continue" verdict in the nftables?

It is described in the documentation of nftables as: continue Continue ruleset evaluation with the next rule. This is the default behaviour in case a rule issues no verdict. But I am ...
Noah5CE's user avatar
Noah5CE
  • 43
1 vote
1 answer
11k views

Best Practices for persisting nftables rules

I'm new to Ubuntu having moved from hosting on CentOS7 which was using iptables and I was comfortable with how apf and bfd handled (hid) iptables from me.. and it was working well So, I've moved to ...
DigitalSorceress's user avatar
DigitalSorceress
  • 42
1 vote
1 answer
5k views

Completely remove ufw, delete all iptables chains and rules, for a fresh start with nftables firewall in Ubuntu MATE 19.04

Though I have gone through quite a few threads on AskUbuntu (1, 2, 3), and elsewhere, I'm little confuse on how to proceed. I'd like to completely remove ufw, delete all iptables chains and rules, ...
Jags's user avatar
Jags
  • 2,186
0 votes
0 answers
348 views

Ubuntu 22.04 iptables command not working

I posted this same question in another SE forum, later felt this forum is more appropriate considering the Linux Distro I am dealing with. Totally new to netfilter thing, currently am running an ...
RaGa__M's user avatar
RaGa__M
  • 101
0 votes
1 answer
364 views

nftables.conf - file permissions

after the plain installation of nftables (ubuntu server 22.04) the permissions of the /etc/nftables.conf file are set to 755 (-rwxr-xr-x). i cannot believe that it's necessary that anyone has read and ...
Shaun.M's user avatar
Shaun.M
  • 21
0 votes
1 answer
4k views

How do I configure persistent firewall settings in Ubuntu 22.04 LTS - confused about ufw, nfw and iptables(-nfw/-legacy)

TL;DR: how do I configure firewall rules to be persistent? I am not using UFW, I believe I am using iptables-nft. First, I have started from pretty recent vanilla Ubuntu 22.04LTS installation (some ...
Janne Mattila's user avatar
Janne Mattila
  • 101
0 votes
0 answers
891 views

Listening port's with service name

I'm looping in listening ports and when looping I want to get the exact service name of the ports for further activity. So how can I get the service name of the ports.
lee's user avatar
lee
  • 1
0 votes
2 answers
232 views

Translate the source address of all packets leaving a particular interface with nftables

I am running Ubuntu Server 18-04 VM on Zorin host. I am wanting to translate the source address of all packets leaving via enp0s3 to 192.168.1.120 with nftables. This is what I have done: apt ...
Jedi's user avatar
Jedi
  • 491
0 votes
0 answers
2k views

replace iptables with nftables

I am using ubuntu 16.04.4 LTS (latest). I want to move to nftables. How can I remove iptables and install nftables ?
FatRabbit's user avatar
FatRabbit
  • 148