Hi people! First, I would like to introduce myself to you. My name is Juraj Gabčík and I am a student at the Faculty of Informatics at the University of Žilina, Slovakia. My reason for writing to you is that I would like to ask you for a favour. Now I am writing my bachelor's theses about nftables and I would be grateful to you for some information I need concerning this issue. I found something on the internet but it wasn't enough. I am interested in the background of the processing of packet after it's received by NIC: what queues it passes, where the rules can be applied etc. Neither I could find any information about whether nftables have the same structure of classes INPUT, OUTPUT and FORWARD as iptables. I need to compare the efficiency of the firewall created by iptables and nftables and I would be very grateful if you could explain to me the main differences between the processing of packet by means of iptables and nftables. Also a demonstration of some rules written by means of iptables and nftables (rules of the same meaning in both cases) would be very helpful. How to compile kernel supporting nftables? If you would come up with something more that would help me or that would be useful for my theses I would highly appreciate it. As I have already mentioned, I am mainly concerned about the information related to the background of the processing of the packet and the comparison of the efficiency of iptables and nftables. Hope to hear from you soon, Juraj Gabčík -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
