Page 1 of 1

Current status of nftables for openvpnas?

Posted: Tue Jan 09, 2024 10:48 pm
by taupehat
Redhat et seq. are deprecating the iptables driver (and spamming the console about it). I see "Settings related to iptables" in the official docs but nothing about nftables there. Yes, I can install the compatibility layer and make it go but I'm going to get pushback on that the moment the boss logs into the console and sees the deprecation message.
So I can answer the question he will with complete certainty ask: how soon can we swap to what isn't deprecated so we can do something simple like replace "iptables.web=true" with "nftables.web=true" in our systems?

Re: Current status of nftables for openvpnas?

Posted: Mon Feb 05, 2024 8:24 pm
by openvpn_inc
Hello taupehat,

At the moment AS still depends on iptables. This is being reworked into nftables at this very moment. When it is actually delivered to customers is hard to answer. Most likely this year. That's all we can tell you on this topic at the moment. The compatibility will work fine until then.

Kind regards,
Johan