Talk:Nftables
This is a Talk page - please see the documentation about using talk pages. Add newer comments below older ones, sign comments using four tildes (
~~~~), and indent successive comments with colons (:).
Add new sections at the bottom of the page, under a heading (== ==). Please remember to mark sections as "open for discussion" using {{talk|open}}, so they will show up in the list of open discussions.-a flag
... To delete a rule, you first need to get the handle number of the rule. This can be done by using the -a flag on nft: ...
The -a flag is not used anywere in the document, someone skilled can correct this issue
— The preceding unsigned comment was added by Tender (talk • contribs) 17 October 2014
- Added an example of the -a flag usage in the document. - Bergzand 14:19, 5 December 2014 (UTC)
- A fix was provided (Special:Diff/167250). --Blacki (talk) 20:31, 5 August 2022 (UTC)
syntax error, unexpected flush, expecting string
This line:
root #echo "nft flush ruleset" > backup.nftshould be:
root #echo "flush ruleset" > backup.nftotherwise, this error happens:
root #$ sudo nft -f backup.nftbackup.nft:1:5-9: Error: syntax error, unexpected flush, expecting string
nft flush ruleset
^^^^^
But the reason that I'm not changing this myself in the page is: 1. I am running the above on non-gentoo linux (nftables v0.4, kernel 4.0.0-g39a8804) and 2. it may have changed with the new versions of nftables thus the original command may still work as expected and without error in gentoo. --EmanueLczirai (talk) 17:17, 21 April 2015 (UTC)
- I'm thinking that those commands came from here https://wiki.nftables.org/wiki-nftables/index.php/Operations_at_ruleset_level#backup.2Frestore --EmanueLczirai (talk) 22:23, 21 April 2015 (UTC)
- A fix was provided (Special:Diff/568880). --Blacki (talk) 20:35, 5 August 2022 (UTC)
Still a stub?
Has this been fleshed out enough so that we can drop the stub marking? --TitanOfOld (talk) 17:07, 12 July 2019 (UTC)
- A fix was provided (Special:Diff/850782). --Blacki (talk) 20:39, 5 August 2022 (UTC)
IPTables support
I believe this module - 'IP tables support (required for filtering/masq/NAT)' - is not really necessary to run nftables. On the other hand, the setting 'Netfilter nf_tables reject support' is indeed needed or nftables won't start. Finoderi (talk) 09:50, 2 August 2021 (UTC)
- Thanks for the feedback ! Please use the “
{{talk|open}}” template and end posts with four tildes to insert signature “~~~~”. I've added the talk template (I know, it's missing from the previous posts too xD), but I don't know how to add another person's signature. Kyoreln (talk) 09:04, 2 August 2021 (UTC)