Nftables Chain Names

An XCCDF Value

Details
Profiles
Prose

Description

The rules in nftables are attached to chains. Unlike in iptables, there are no predefined chains like INPUT, OUTPUT, etc. Instead, to filter packets at a particular processing step, a base chain with a chosen name should be created, and attached it to the appropriate Netfilter hook.

ID: xccdf_org.ssgproject.content_value_var_nftables_base_chain_names
Updated: about 1 year ago