On 26 Jul 2023 12:24:00 +0000 Patrick Schleizer <adrela...@whonix.org> wrote: > libvirt upstream no longer depends on iptables for years. > > source: > https://gitlab.com/libvirt/libvirt/-/issues/406#note_1176654618 > > Should be trivial and safe to switch to nftables?
Next to the Build-Depends on iptables, there's also an explicit Depends added to the libvirt-daemon-system binary package. I think it would be good to switch both to nftables, especially now that we're (still) in the middle of the Trixie development cycle. Or at least add nftables as (preferred) optional dependency to iptables. *If* any issues pop up, there's plenty of time to fix it. Now almost 5 years ago, the iptables package added the following to its Description: "The iptables/xtables framework has been replaced by nftables. You should consider migrating now."
signature.asc
Description: This is a digitally signed message part.
