alt Hacker NewsMy main reason is that nft applies configs atomically. It also has very good tracing/debugging features for figuring out how and why things aren't working as expected.
That said, I think many distros are shipping `iptables` as the wrapper/compatibility layer over nft now anyways.
as somebody that's not a network engineer by day and has barely grokked iptables, could you recommend some resources for learning nftables ?