Arturo Borrero Gonzalez <arturo@xxxxxxxxxx> wrote: > I'm curious, What is the use case of using both nftables and iptables > at the same time? > Some missing functionality in nft? > Perhaps some ipt->nft partial migration procedure? Yes, partial migration. Right now there are an awful lot of tools out there (docker, libvirt, kubernetes, ..) that call iptables(-restore) directly (or inject them via firewalld). And unfortunately I don't see how we can magically move all of this to nftables. So allowing to do a step-by-step migration seems the only viable option. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
