Which is "better" for ease of control - iptables and nftables?

ericmarceau · April 24, 2026, 10:35pm

Do people out there have any strong opinions regarding

degree of ease of understanding firewall filterring rules?
degree of ability/scope to control?
degree of ease of fine tuning?

using one or the other?

BTW, not part of discussion, but I do NOT use UFW. No need for it!

hydn · April 24, 2026, 10:55pm

well nftables is the future and IMO the better choice for ease of control too. It’s been the official successor since 2014 and every major distro defaults to it now, or uses iptables-nft as a compatibility shim. Even firewalld and UFW use it as their backend. So it’s arguably better time spent to focus on nftables.

tkn · April 24, 2026, 11:04pm

as a sidenote:

I know that UFW stands for Uncomplicated Fire Wall.
I dived into it and found the tablesetup quite complicated

(Please forgive me, I had a long and complicated day at work )

hydn · April 24, 2026, 11:05pm

Im sure pun intended!

Topic		Replies	Views
Does Ubuntu 24.04 use iptables or nftables? Linux Support	3	5844	November 11, 2024
Nftables question(s) Linux Support firewall	10	977	June 8, 2022
Mate calculator MATE Desktop calculator	7	87	April 25, 2026
How to block outgoing ports? Linux Support	3	99	March 2, 2026
My Quest for the Ultimate Home Office Firewall General Discussions home-network , desktop , firewall	0	3561	March 20, 2025

Which is "better" for ease of control - iptables and nftables?

Related topics