nftables to replace iptables firewall facility in upcoming Linux kernel

Nftables has been selected for inclusion in the upcoming Linux Kernel 3.13. After years of development – including a iptable-compatibility mode – the new kernel module is now ready for release.

Nftable is simpler than iptables, it cleans up ip6 integration and it allows for easier rule scripting. Those interested to get going fast can try it out via a new tutorial.