Nftables is the successor of {ip,ip6,arp,eb}tables as a network filtering and classification framework. Its enhancement is to unite all the tools for different protocols and provide a complex interface to manage them.

My plan is to extract the iptables implementation of the TPROXY target, and reuse it to implement native socket match and tproxy support in nftables.

Organization

Student

Máté Eckl

Mentors

  • Florian Westphal
close

2018