1cho1ce

> How should derivatives load their custom additional nftables rules in Qubes? > > Kinda similar to how should users load their custom additional nftables rules in Qubes? > >...

> But on the other hand if there will be a need for a multiple custom chains, for example, `whonix-input` and `vpn-input` then there is a question on how to...

The way it's done right now seems to be easier where you just `insert` or `add` jump to your custom chain in main chain: https://github.com/QubesOS/qubes-core-agent-linux/blob/main/network/qubes-ipv4.nft#L30 But there will be a...

> If you need additional chains in the `qubes` table (as `jump` or `goto` targets), prefix them (with e.g. `whonix-`) to avoid clashing with the rules provided by Qubes OS....

> @1cho1ce Better would be something like > > ```shell > nft 'add chain ip qubes whonix-input > flush chain ip qubes whonix-input > add rule ip qubes custom-input jump...

> ```shell > nft 'delete rule ip qubes custom-input jump whonix-input > delete chain ip qubes whonix-input' > ``` ``` user@testqube:~$ sudo nft 'delete rule ip qubes custom-input jump whonix-input...