Not easy to remove that ....
If desired it can be replaced by iptables-nft .
Uh oh - I either never tried that or forgot about this . Thanks for clarifying.
]]>$ pacman -Qi iptables | grep Required
Required By : iproute2 systemd
$
Not easy to remove that ....
If desired it can be replaced by iptables-nft .
I only use nftables, but as long as iptables behaves and stays inactive (which it does sofar) I don't mind (much) having it installed.
]]>The netfilter framework is inside the kernel (as modules).
iptables and nftables are "just" userland tools for controlling them.
If you disable iptables and do a reboot, everything should be in working order.
You can remove iptables userland tools, but it's not necessary.
]]>At this point I am assuming my arch system's firewall is managed only by nftables.
My question are:
Shouldn't I also remove iptables from the system?
Keeping iptables on the system does not create issues with the newly installed nftables?
I am aware the iptables service is disabled but the output of "# systemctl status iptables" is stating it is still loaded (do also reporting it is inactive, dead) and the output of "# nftables -L" states different rules (all traffic accepted).
On other Linux distros (Debian and Debian based distros as ubuntu and mint) it was possible to remove/purge completely the iptables and keep only nftables on the system.
On Arch Linux, I am guessing it is not necessary to remove completely the iptables package (also because that would break the system, as I have already tried and confirmed) but I would like to have confirmation from other's experience using nftables. Did you keep iptables on your arch system while using nftables?
]]>