Nftables

nftables is the successor to iptables. It replaces the existing iptables, ip6tables, arptables and ebtables framework. It uses a new userspace utility called nft and also provides a compatibility layer for the ip(6)tables and framework.

Kernel
According to this forum post these kernel options must be set.

Software
install

External Resources

 * https://wiki.archlinux.org/index.php/Nftables
 * http://wiki.nftables.org/wiki-nftables/index.php/Main_Page