NFTables questions

notooth · 03-04-2021, 09:45 AM

I am studying NFTables, and I have some rules in /etc/nftables/nftables_firewall:

Code:

table ip filter {
	chain output {
		type filter hook output priority 100; policy accept;
	}

        # allow LAN to firewall, disallow WAN to firewall
	chain input {
		type filter hook input priority 0; policy accept;
		iifname "lan0" accept
		iifname "wan0" drop
	}

Can anyone tell me how to apply these rules without rebooting?

TB0ne · 03-04-2021, 10:49 AM

Quote:

Originally Posted by notooth

I am studying NFTables, and I have some rules in /etc/nftables/nftables_firewall:

Code:

table ip filter {
	chain output {
		type filter hook output priority 100; policy accept;
	}

        # allow LAN to firewall, disallow WAN to firewall
	chain input {
		type filter hook input priority 0; policy accept;
		iifname "lan0" accept
		iifname "wan0" drop
	}

Can anyone tell me how to apply these rules without rebooting?

Yes...the NFTables documentation can.
https://wiki.nftables.org/wiki-nftab....php/Main_Page

You say you're 'studying' this...if you are, it's odd you haven't read the documentation. And you've been a member here for *FIFTEEN YEARS*...you should know the LQ Rules and "Question Guidelines", about doing basic research first.

Turbocapitalist · 03-04-2021, 10:57 AM

It's a strange question since it is covered multiple places both in the wiki and in the manual page.

But to answer the question, read up on the -f option.

jdrosales · 04-15-2021, 11:43 AM

While I agree with the two previous answers about basic knowledge, here is how I do it:

Code:

sudo service nftables reload ( or restart ) whichever suits you.