cancel
Showing results for 
Search instead for 
Did you mean: 
mkeigo
Cadet
Cadet
  • 266 Views

Why nftables is masked? Chapter 11. Managing Network Security of Red Hat System Administration II

Jump to solution

Chapter 11. Managing Network Security of Red Hat System Administration II describes the firewall architecture concepts first, then it introduces nftables, the new filter and packet classification subsystem.

On the next page, the nftables service is masked. I am confused by this explanation.

  1. Why the  nftables service is masked here?
  2. Dos it mean the  nftables service is not compatibile firewalld?
0 Kudos
1 Solution

Accepted Solutions
mkeigo
Cadet
Cadet
  • 252 Views

Re: Why nftables is masked? Chapter 11. Managing Network Security of Red Hat System Administration I

Jump to solution

I received answers from chat course assistance:

while https://rol.redhat.com/rol/app/courses/rh134-8.2/pages/ch11 , explains nftables concepts

the following exercise https://rol.redhat.com/rol/app/courses/rh134-8.2/pages/ch11s02 , has been used to show service masking for nftables - where nftables has been masked to prevent any accidental activation of the service.

In step 6.1 curl could not reach servera on port 443

step 8.1 shows that the service is dead ( but not masked ) - so we go ahead and mask it

View solution in original post

0 Kudos
Reply
Loading...
1 Reply
mkeigo
Cadet
Cadet
  • 253 Views

Re: Why nftables is masked? Chapter 11. Managing Network Security of Red Hat System Administration I

Jump to solution

I received answers from chat course assistance:

while https://rol.redhat.com/rol/app/courses/rh134-8.2/pages/ch11 , explains nftables concepts

the following exercise https://rol.redhat.com/rol/app/courses/rh134-8.2/pages/ch11s02 , has been used to show service masking for nftables - where nftables has been masked to prevent any accidental activation of the service.

In step 6.1 curl could not reach servera on port 443

step 8.1 shows that the service is dead ( but not masked ) - so we go ahead and mask it

View solution in original post

0 Kudos
Reply
Loading...
Join the discussion
You must log in to join this conversation.