libnetwork icon indicating copy to clipboard operation
libnetwork copied to clipboard

Published 20 hours ago verified publisher icon moby

nftables support ?

Open Zenithar opened this issue 6 years ago • 4 comments

Currently docker/moby support iptables / firewalld. Is nftables going to be supported one day ?

Zenithar avatar Oct 23 '17 21:10 Zenithar

Duplicate of moby/moby#26824.

senden9 avatar Jan 31 '18 11:01 senden9

firewalld now support nftables with 0.6.0 release: https://firewalld.org/2018/07/firewalld-0-6-0-release

To get docker working is switching back the backend to iptables instead of nftables.

aboe76 avatar Sep 05 '18 19:09 aboe76

What would be a good way to implement nftables support? Would adding a new "backend", using github.com/google/nftables for example, along with the existing iptables and firewalld ones, be a good solution?

m-barthelemy avatar Oct 31 '20 10:10 m-barthelemy

I think there are two issues here, firewalls with nftables should be possible, if rocket could check back with firewalld commands instead of iptables.

Second native nftables support via iets python library.

aboe76 avatar Oct 31 '20 18:10 aboe76