nftables

nftables is the project that aims to replace the existing {ip,ip6}tables framework. Basically, this project provides a new packet filtering framework, a new userspace utility and also a compatibility layer for {ip,ip6}tables. nftables is built upon the building blocks of the Netfilter infrastructure such as the existing hooks, the connection tracking system, the userspace queueing component and the logging subsystem.^[1]

Project Homepage [EN]
- Wiki

nftables [EN] @ Wikipedia

Documentation

Quick howto [EN]

References

↑ https://netfilter.org/projects/nftables/

[1] ttps://netfilter.org/projects/nftables/

[1]