alt Hacker NewsWith nftables you need to learn a lot before you cam be partially sure of wbat you do.
With ufw gui you need a single checkbox - block incoming connections.
With nftables you need to learn a lot before you cam be partially sure of wbat you do.
With ufw gui you need a single checkbox - block incoming connections.
Not sure what you find difficult about it, but I just took the "workstation" config from the gentoo wiki and used it on my laptop.
Perhaps if you're doing more complicated things like bridging interfaces or rerouting traffic it would be more difficult to use than the alternatives, but for a simple whitelist it's extremely easy to configure and modify.