Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
nixos/nat: substitute iptables for compat under nftables #85462
(Migrated from #84949 due to a wonderful demonstration of PEBKAC)
Motivation for this change
Currently, NAT will not work if you have nftables enabled (and therefore default firewall disabled (and therefore ip_tables unloaded/blacklisted)). This allows those using nftables to enable nat and have it work with minimal code change, thanks to the good work of those who created iptables-nftables-compat.
Debugging why my containers had no network access was a pain, this change fixed my issue, I'm using it right now.