NFTables To Replace iptables In the Linux Kernel 235
An anonymous reader writes "NFTables is queued up for merging into the Linux 3.13 kernel. NFTables is a four-year-old project by the creators of Netfilter to write a new packet filtering / firewall engine for the Linux kernel to deprecate iptables (though it now offers an iptables compatibility layer too). NFTables promises to be more powerful, simpler, reduce code complication, improve error reporting, and provide more efficient handling of packet filter rules. The code was merged into net-next for the Linux 3.13 kernel. Iptables will still be present until NFTables is finished, but it is possible to try it out now. LWN also has a writeup on NFTables."
Bah (Score:5, Funny)
IPChains work just fine thank you very much!
Kernel 2.4 works fine for my needs. You kids today have no idea what it is like upgrading thousands of computers at work! Especially when you have to justify to a beancounter to upgrade an IP table that has worked fine since October 2001 and already works. It is an enterprise standard that works so why fix what isn't broken?
Last thing I need is another confusing IP table interface designed for teenagers.
With a modern AV I should be just fine if I do not go to questionable websites.
Noooooo (Score:5, Funny)
All my precious iptables knowledge gone!
Linus hates us precious! Hates us!
drunken troubleshooting in 3 years (Score:5, Funny)
[root@wang]# ifconfig
bash: ifconfig: command not found
[root@wang]# iptables -F
bash: iptables: command not found
Re:I really like the idea (Score:5, Funny)
Indeed. I see several possible outcomes:
- This never reaches the quality level of iptables
- It becomes fast and stable enough to use, but nobody cares
- It replaces iptables in the distant future
Iptables is not broken. Do not fix it.
Re:again? (Score:5, Funny)
Don't you know? Open-source software doesn't need docs, because the best docs available are the sources.
Re: again? (Score:2, Funny)
Re:Cat got your tongue? Cat got your tongue? (Score:3, Funny)
JUST MAKE a DECENT FUCKING GUI with DOCUMENTATION.
I don't think fucking needs a new GUI. The current touch-based interface works just fine. Most people don't need any documentation for it, but if you really need it, I think there's a lot of third-party stuff explaining every fucking detail. There are even videos demonstrating its use, look under "porn".