New Kernel Firewall Announced: NFTables

jason

Patrick McHardy announced the release of the first public version of NFTables on the NetFilter development list and Linux kernel net development list. From the announcement:

The kernel provides a netlink configuration interface, as well as runtime ruleset evaluation using a small classification language interpreter. libnl contains the low-level functions for communicating with the kernel, the nftables frontend is what the user interacts with.

PatrickĀ  goes on to give in depth information on the new implementation and highlighting the differences between the new NFTables interface and the existing NetFilter interface. I recommend at least skimming over the post if you use IPTables/NetFilter on a regular basis so you can see what may be coming down the line.

[Slashdot] [Digg] [Reddit] [del.icio.us] [Facebook] [Technorati] [Google] [StumbleUpon]

Tags: , , ,

This entry was posted on Friday, March 20th, 2009 at 5:29 pm and is filed under Linux, Networking. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply