On 2024-08-06, Dan Ritter wrote: > 200 is a lot for a human to manage. You may be able to simplify your > iptables rules by taking advantage of ipset for large numbers of > IPs (hash:ip) or ports (bitmap:port) that need similar > treatment. That's available in nftables as well.
And udp/tcp ipv4/ipv6 can be mixed in some rules. But check also if your other programs can use nftables.
