Victor JulienTo #Vuurmuur users this may not look very spectacular, but there is something special going on here...
First time my #nftables backend is successfully creating a functional ruleset.
Still a lot of work left to do, but this is a big step for me :)
My first Open Source project called #Vuurmuur is still under development, even if it going quite slow.
Pushed out a minor release this morning:
https://www.inliniac.net/blog/posts/vuurmuur-082/
https://vuurmuur.org/posts/release-082/
Vuurmuur is full iptables management tool, including log/connection viewing. Managed through a ncurses interface.
Vuurmuur 0.8.2 release; development update
I’ve just pushed out a minor update to Vuurmuur. Basically a single important bug fix, and lots of minor cleanups. Both in Github Actions and my local CI I’ve updated the build tests and the scanners like cppcheck. There are quite a few debs for Ubuntu and Debian. On the rpm side, just Fedora. Since libnetfilter_log is still missing from EPEL, creating CentOS rpms isn’t feasible right now. For the release, see: https://vuurmuur.org/posts/release-082/
The last week I've finally started working on supporting #nftables in #vuurmuur.
It's a bit involved as Vuurmuur had no clear isolation of the iptables specific logic, so part of the work is to clean the iptables logic up first.
My plan is to first do a simple translation of the iptables rules into nftables rules, then in a second pass look more into supporting more advanced nftables constructs.