Most major Linux distributions have support for nftables:

  • they include a kernel with nf_tables support
  • they include userspace support

Normally, you can get nftables working just by installing the software using the corresponding package manager.

Be aware that distributions commonly don't use the absolute last version of nftables or the linux kernel. If you need latest version of the framework, you may need Building and installing nftables from sources.

For reference, here are some links where you can get distribution-specific info about nftables.


Debian includes latests nftables also in 'stable-backports', so you don't need to run 'testing' to get nftables.

By the way, nf_tables is the default iptables backend starting with Debian Buster.

arch linux