Arturo Borrero, onye nrụpụta Debian bụ akụkụ nke Netfilter Project Coreteam na onye na-echekwa ngwugwu metụtara nftables, iptables na netfilter na Debian, bugharịa isi ntọhapụ nke Debian 11 na-esote iji nftables na ndabara. Ọ bụrụ na akwadoro atụmatụ a, ngwugwu nwere iptables ga-atụgharị na ngalaba nhọrọ nhọrọ anaghị etinye na ngwugwu bụ isi.
Ihe nzacha ngwugwu Nftables bụ ihe ama ama maka ijikọ ọnụ nke nzacha nzacha ngwugwu maka IPv4, IPv6, ARP na àkwà mmiri netwọkụ. Nftables na-enye naanị ọnụọgụ, protocol na-adabere na ya na ọkwa kernel nke na-enye ọrụ ndị bụ isi maka iwepụta data na ngwugwu, ịrụ ọrụ data, yana njikwa ọsọ. A na-achịkọta ihe nzacha nzacha n'onwe ya na ndị na-ahụ maka usoro protocol n'ime bytecode na oghere onye ọrụ, mgbe nke a gasịrị, a na-etinye bytecode a n'ime kernel site na iji interface Netlink wee gbuo ya na igwe mebere pụrụ iche nke na-echetara BPF (Berkeley Packet Filters).
Site na ndabara, Debian 11 na-enyekwa ọkụ firewalld ike, emebere dị ka ihe mkpuchi n'elu nftables. Firewalld na-agba ọsọ dị ka usoro ndabere nke na-enye gị ohere ịgbanwe iwu nzacha ngwugwu site na DBus na-enweghị ibugharị iwu nzacha ngwugwu ma ọ bụ mebie njikọ eguzobere. Iji jikwaa firewall, a na-eji firewall-cmd utility, nke, mgbe ị na-emepụta iwu, adabereghị na adreesị IP, netwọk netwọk na nọmba ọdụ ụgbọ mmiri, kama na aha ọrụ (dịka ọmụmaatụ, iji mepee ohere na SSH ị kwesịrị. na-agba ọsọ "firewall-cmd-add —ọrụ = ssh", imechi SSH - "firewall-cmd -remove -service=ssh").
isi: opennet.ru