There are 11 repositories under nftables topic.
A local DNS server to obtain the fastest website IP for the best Internet experience, support DoT, DoH. 一个本地DNS服务器,获取最快的网站IP,获得最佳上网体验,支持DoH,DoT。
A docker sidecar container to forward all traffic to local docker host or any other host
This repository contains a Go module to interact with Linux nftables (the iptables successor).
Generative Art Generator
chinadns 重构增强版,支持域名分流、ipset/nftset、UDP/TCP/DoT
A simple, lightweight socks5 transparent proxy for Linux. (IPv4/IPv6/TCP/UDP)
🔥以社会主义核心价值观为指导**,实现 Linux 和 MacOS 设备的全局智能分流
📡 SPR: Open Source, secure, user friendly and fast wifi routers for your home. One wifi password per device. Ad Blocking & Privacy Blocklists. Policy Based Network Access
Go bindings for iptables, ebtables and arptables, which provide numerous features, extensions and more.
Script to apply a Transparent proxy through Tor with nftables or iptables and can optionally forge a random MAC, localtime, ip, hostname.
Bash script to create nftables sets of country specific IP address ranges for use with firewall rulesets. The project provides a simple and flexible way to implement geolocation filtering with nftables. It can be a useful tool to reduce the chance of malware, ransomware and phishing attempts as well as mitigating the effects of DDoS attacks.
Python script that generates nft maps of ip address blocks and corresponding geolocation. This data is taken from db-ip.com, so yo don't have to worry about accepting any EULA.
Provisioning tool for systemd in initramfs (systemd-tool)
Python package to generate country-specific IP network ranges consumable by both iptables/ipset and nftables.
Allow/deny traffic in nftables using country specific IP blocks
A collection of nftables, multi routing scripts, port knocked, and iptables files. To get inspiration to make your own firewalls.
Block countries using iptables + ipset + ipdeny.com
QoS over Nftables (This packages is merged upstream, please visit openwrt/packages and openwrt/luci for more detail)
User-friendly and flexible geoip blocker for Linux
CAKE QoS Script (OpenWrt)
CNI Plugins compatible with nftables
A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics
Public collection of firewall dumps.
RedisPushIptables is used to update firewall rules to reject the IP addresses for a specified amount of time or forever reject.
Full rest API implemented Linux firewalld distributed manipulation controller and UI
Firegex is an application firewall created for CTF Attack-Defence competitions by Pwnzer0tt1