Flexible math operations on network packet fields with Nftables

Name: Flexible math operations on network packet fields with Nftables
Start: 2026-01-31T10:00:00
End: 2026-01-31T10:00:00
Location: UA2.114 (Baudoux)

UA2.114 (Baudoux) | Day 2 | 10:00 - 10:20 | Speakers: Fernando Fernandez Mancera

Copy link

Copy link

Open in browser

Notes

Abstract

A new RFC for Netfilter/nftables arrived recently in the netfilter-devel mailing list [1], introducing flexible math operation support for network packet fields. This could solve some migration problems from iptables to nftables and in addition empower other use-cases.

This demo will quickly show how it works with simple real-world scenarios.

[1] https://lore.kernel.org/netfilter-devel/20250923152452.3618-1-fmancera@suse.de/

Attachments

Slides

Speakers

Fernando Fernandez Mancera

Fernando is a Linux Kernel Networking Engineer at SUSE that works mostly upstream contributing to Netfilter and netdev subsystems.

External Links

Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.