Bug#934584: IPMasquerade=yes uses iptables (not nftables)
Arturo Borrero Gonzalez
arturo at debian.org
Mon Aug 12 13:08:42 BST 2019
On 8/12/19 1:56 PM, Michael Biebl wrote:
> Is libnftables a proper public API, i.e. supposed to be used by 3rd
> party applications?
>
Yes, totally. The first user is the nft itself.
You have a python bindings package and the library itself can ingest both native
nft syntax and JSON.
If some application would like to use a different abstraction layer, libnftnl
might be an option too, but that works directly at Netlink level (may be too
low-level for some).
More information about the Pkg-systemd-maintainers
mailing list