firewalld with HUGE list of ip to drop
ubuntu-users-list at thomas.freit.ag
ubuntu-users-list at thomas.freit.ag
Wed Apr 17 06:25:23 UTC 2024
Hi Jon,
On 16.04.24 06:51, Jon LaBadie wrote:
>> I did not come across this in Ubuntu (or Debian), however ipset/iptables is a rather old technique
>> with successors already in place.
> Do you mean the combination of ipset/iptables has successors or that
> individually ipset AND iptables each have successors? I know of
> nftables but do not recall a substitute for ipset.
>
Actually both have successors. nftables has sets, which brings a similar feature set as ipset has:
https://wiki.nftables.org/wiki-nftables/index.php/Sets
https://wiki.nftables.org/wiki-nftables/index.php/Moving_from_ipset_to_nftables
regards,
Thomas
More information about the ubuntu-users
mailing list