The classic packet filter management toolkit iptables 1.8.10 yatulutsidwa, kukula kwake komwe kwangoyang'ana kwambiri pazigawo zosungira kumbuyo kuyanjana - iptables-nft ndi ebtables-nft, kupereka zothandizira ndi mawu ofanana ndi mzere wa lamulo monga iptables ndi ebtables, koma kumasulira malamulowo kukhala nftables bytecode. Mapulogalamu oyambirira a mapulogalamu a iptables, kuphatikizapo ip6tables, arptables ndi ebtables, adachotsedwa mu 2018 ndipo asinthidwa kale ndi nftables m'magawidwe ambiri.
Mu mtundu watsopano:
- The xtables-translate utility yawonjezera kuthandizira malamulo oyika omwe amatchula nambala ya index (yosinthidwa kukhala malamulo a ntf 'insert rule ... index N').
- Zowonjezera zothandizira pa matebulo a broute (bridge route) ku ebtables-nft.
- Zotulutsa zowonongeka za nft-variants utility, zomwe zimathandizidwa pofotokoza njira ya "-v" kangapo, zikuwonetsa seti zomwe zilipo.
- Thandizo lowonjezera la mayina "mld-listener-query", "mld-listener-report" ndi "mld-listener-done" kutanthauza ICMPv6 mitundu ya mauthenga 130, 131 ndi 132.
- Imawonetsetsa kuti mawu a "meta mark" agawidwa bwino ndikusinthidwa kukhala malamulo a "-j MARK", omwe angafunike kusakaniza nftables ndi iptables-nft patebulo lomwelo.
- Zolakwa zomwe zinasonkhanitsidwa zachotsedwa.
Source: opennet.ru