User contributions
Jump to navigation
Jump to search
- 12:17, 4 September 2023 diff hist −10 Quick reference-nftables in 10 minutes add mld2-listener-report per bz#1701 current
- 18:34, 29 August 2023 diff hist +74 Quick reference-nftables in 10 minutes add more useful examples for ip frag-off
- 15:44, 29 August 2023 diff hist +6 Quick reference-nftables in 10 minutes incorrect copy, paste and mangle
- 22:56, 27 August 2023 diff hist +6 Counters incorrect syntax with protocol matching current
- 20:26, 22 August 2023 diff hist +9 Flowtables update notes according to HTTP connection offload current
- 20:25, 22 August 2023 diff hist +273 Flowtables provide an example that offload HTTP traffic
- 20:05, 22 August 2023 diff hist +184 Flowtables add a few notes
- 23:58, 15 August 2023 diff hist −4 m Meters →Dynamic set and map and stateful expressions: minor edit current
- 23:58, 15 August 2023 diff hist +143 Meters clarify dynamic flag
- 23:31, 15 August 2023 diff hist −188 Meters rewrite summary
- 23:26, 15 August 2023 diff hist −489 Meters →Doing connlimit with nft: revisit example
- 23:11, 15 August 2023 diff hist −363 Meters →Listing meters: remove listing
- 23:09, 15 August 2023 diff hist −82 Meters →Using meters: use nested notation and refine example
- 10:17, 31 July 2023 diff hist −4 Operations at ruleset level fix incorrect flush ruleset current
- 16:46, 20 April 2023 diff hist +1 Scripting →Including files current
- 19:34, 31 January 2022 diff hist +2 Simple ruleset for a server →nftables.conf: missing closing curly brace current
- 00:51, 4 September 2021 diff hist +271 Sets add query for element s in a set
- 13:41, 31 August 2021 diff hist +104 Matching packet headers →Matching transport protocol: a bit more detailed explanation on how meta l4proto works current
- 13:39, 31 August 2021 diff hist +4 Matching packet headers →Matching IPv6 headers: another typo
- 13:38, 31 August 2021 diff hist +51 Matching packet headers →Matching IPv6 headers: fix typos and style
- 13:37, 31 August 2021 diff hist +1,331 Matching packet headers →Matching IPv6 headers: refer to the ICMPv6 case
- 10:33, 12 August 2021 diff hist −28 Simple ruleset for a workstation remove echo request in IPv6 examples
- 01:07, 28 July 2021 diff hist +60 Simple ruleset for a server →nftables.conf: add a note on PMTUD
- 00:56, 28 July 2021 diff hist +56 Simple ruleset for a server add comment regarding ICMPv6 (per Thomas Landauer)
- 18:19, 23 July 2021 diff hist +172 Nftables families →inet: refer to meta l4proto current
- 18:13, 23 July 2021 diff hist +243 Matching packet headers →Matching transport protocol: document inet
- 17:00, 23 July 2021 diff hist +274 Quick reference-nftables in 10 minutes →Ct: add ct count
- 22:36, 5 July 2021 diff hist +518 Meters →Doing connlimit with nft: document caveats
- 22:35, 5 July 2021 diff hist −1,070 Connlimits →Using connlimits in dynamic sets and maps: remove this example, the header is a hyperlink current
- 22:34, 5 July 2021 diff hist −20 Connlimits →Using connlimits in dynamic sets and maps: add example and caveats
- 22:29, 5 July 2021 diff hist +1,090 Connlimits →Using connlimits in dynamic sets and maps: add example and caveats
- 13:01, 28 June 2021 diff hist +152 Moving from ipset to nftables current
- 13:00, 28 June 2021 diff hist −9 Moving from ipset to nftables incorrect ipset-translate syntax in example
- 12:58, 28 June 2021 diff hist +581 Moving from ipset to nftables update article to document the new ipset-translate utility
- 14:56, 21 June 2021 diff hist +20 Multiple NATs using nftables maps →Multiple NAT mapping with address and port current
- 14:56, 21 June 2021 diff hist +31 Multiple NATs using nftables maps →Multiple NAT mapping with address and port: missing source tag
- 14:55, 21 June 2021 diff hist +259 Multiple NATs using nftables maps →Multiple NAT mapping with address and port: add example for anonymous map
- 14:43, 21 June 2021 diff hist −8 Multiple NATs using nftables maps →multiple NAT mapping with address and port: minor comestic
- 14:42, 21 June 2021 diff hist +465 Multiple NATs using nftables maps multiple NAT mapping with address and port
- 22:07, 12 June 2021 diff hist +33 Main Page →Examples
- 20:39, 27 May 2021 diff hist −1 Flowtables
- 23:27, 3 May 2021 diff hist −13 Mangling packet headers →Mangling TCP options: remove oifname pppoe0, see note regarding mangling TCP MSS option current
- 23:26, 3 May 2021 diff hist +366 Mangling packet headers →Mangling TCP options: fix example rule regarding TCP MSS mangling
- 04:09, 8 February 2021 diff hist −638 Netfilter hooks add schematic to represent hooks (contributed by Francisco Javier Rodríguez López)
- 00:29, 16 January 2021 diff hist +3 Quick reference-nftables in 10 minutes →Ct: still use ip prefix for ct [original | reply] ip daddr
- 00:25, 16 January 2021 diff hist +26 Quick reference-nftables in 10 minutes →Ct: update ct original ip {s,d}addr syntax
- 20:05, 18 December 2020 diff hist +57 Mangling packet headers
- 19:59, 18 December 2020 diff hist +26 Main Page →Possible actions on packets
- 19:57, 18 December 2020 diff hist −10 Matching routing information →nexthop: Use meter
- 19:51, 18 December 2020 diff hist +16 Conntrack helpers →Supported conntrack helpers
- 19:50, 18 December 2020 diff hist +6 Conntrack helpers →Supported conntrack helpers
- 19:50, 18 December 2020 diff hist +10 Conntrack helpers →Supported helpers
- 19:50, 18 December 2020 diff hist +359 Conntrack helpers
- 19:43, 18 December 2020 diff hist +677 N Conntrack helpers Created page with "You can enable conntrack helpers explicitly through your ruleset. You have to attach your conntrack helper from the prerouting chain. <source lang="bash"> table inet myhelpe..."
- 19:38, 18 December 2020 diff hist +38 Main Page →Possible actions on packets
- 19:38, 18 December 2020 diff hist +200 Matching connection tracking stateful metainformation →Matching the conntrack mark
- 19:36, 18 December 2020 diff hist −177 Matching packet metainformation →The meta selectors
- 19:34, 18 December 2020 diff hist +31 Matching packet headers →Matching Ethernet header fields: missing source tag
- 22:43, 9 December 2020 diff hist +47 Bridge filtering →Example: Stateful bridge firewall
- 00:00, 6 December 2020 diff hist −1 m Bridge filtering →Stateful filtering: typo
- 23:59, 5 December 2020 diff hist +139 Bridge filtering →Stateful filtering: conntrack bridge provides a replacement for br_netfilter and physdev
- 23:48, 5 December 2020 diff hist +141 Bridge filtering →Bridge chain types
- 23:45, 5 December 2020 diff hist +53 Bridge filtering →Example: Stateful bridge firewall
- 23:30, 5 December 2020 diff hist 0 Bridge filtering →Example: Stateful bridge firewall: incorrect interface to reach the web server
- 23:28, 5 December 2020 diff hist +4 Bridge filtering →Example: Stateful bridge firewall
- 23:28, 5 December 2020 diff hist +1 Bridge filtering →Example: Stateful bridge firewall
- 23:28, 5 December 2020 diff hist +101 Bridge filtering →Example: Stateful bridge firewall
- 23:27, 5 December 2020 diff hist +186 Bridge filtering →Stateful filtering
- 23:16, 5 December 2020 diff hist +33 m Bridge filtering →Bridge chain types: minor nit
- 23:12, 5 December 2020 diff hist +2,107 Bridge filtering add simple example describing connection tracking support for bridge
- 11:59, 5 February 2019 diff hist +2 Meters →Doing connlimit with nft
- 11:59, 5 February 2019 diff hist +1 Meters →Doing connlimit with nft
- 11:59, 5 February 2019 diff hist +306 Meters →Using meters
- 11:55, 5 February 2019 diff hist +1,174 Meters →Doing iptables hashlimit with nft
- 11:46, 5 February 2019 diff hist −41 Main Page →Possible actions on packets
- 11:45, 5 February 2019 diff hist +41 Main Page →Possible actions on packets
- 00:57, 20 June 2017 diff hist +113 Load balancing →Using Direct Server Return (DSR)
- 20:01, 19 June 2017 diff hist −33 Load balancing fix broken example
- 19:02, 14 June 2017 diff hist +110 Load balancing →Using stateless NAT
- 19:00, 14 June 2017 diff hist +9 Load balancing →Using stateless NAT
- 19:00, 14 June 2017 diff hist +10 Load balancing →Using stateless NAT
- 18:57, 14 June 2017 diff hist −1 Load balancing →Consistent Hash-based Distribution
- 18:57, 14 June 2017 diff hist +35 Load balancing →Consistent Hash-based Distribution
- 18:55, 14 June 2017 diff hist +50 Load balancing
- 18:53, 14 June 2017 diff hist +33 Main Page
- 18:52, 14 June 2017 diff hist −99 Main Page A wiki is always work in progress anyway... And documentation got a bit better now, remove this comment.
- 05:05, 8 April 2017 diff hist 0 What is nftables?
- 05:04, 8 April 2017 diff hist +8 What is nftables?
- 16:44, 30 March 2017 diff hist −158 m Building and installing nftables from sources Reverted edits by Arushi (talk) to last revision by AlexanderAlemayhu
- 11:00, 8 February 2017 diff hist −24 Netfilter hooks
- 22:05, 13 July 2016 diff hist −3 Netfilter hooks
- 22:05, 13 July 2016 diff hist −3 Netfilter hooks
- 22:04, 13 July 2016 diff hist −22 Netfilter hooks
- 22:03, 13 July 2016 diff hist +7 Configuring chains
- 20:18, 13 July 2016 diff hist +41 Main Page →Advanced data structures for performance packet classification
- 20:16, 13 July 2016 diff hist +15 Main Page →Videos
- 20:14, 13 July 2016 diff hist +2,439 N List of available translations via iptables-translate tool Created page with "The following '''matches and targets''' (in alphabetic order) can be fully translated via iptables-translate tool: == Translatable extensions == === Matches === ====xt==== *..."
- 20:00, 13 July 2016 diff hist +201 N Ipset Created page with "[http://ipset.netfilter.org/ IPSet] is an extension to allow packet classification based on sets. It is currently maintained and actively developed by the Netfilter coreteam d..."
- 19:59, 13 July 2016 diff hist +2,942 N Jumping to chain Created page with "Like in ''iptables'', you can structure your rule-set in using a tree of chains. To do so, you first need to create the custom chain via: <source lang=..."
- 19:58, 13 July 2016 diff hist +2,253 N Rejecting traffic Created page with "'''Note''': Full reject support is available since Linux kernel 3.18. The following rule shows how to reject any traffic from the network: <source lang="bash"> % nft add rul..."