The new bold change in linux is nftables. It might be simpler in syntax, as compared to iptables, and that might help a beginner. But for individuals already working comfortably with iptables and ipsets, this feature of nft doesnt offer a motivation for change. So, what should be the motivation for changing from iptables to nft? Does nft offers performance advantage over iptables? -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
