Kernel nftables support

zifnab · January 11, 2024, 11:02pm

Users here in the community have asked for nftables support and here it is:

Fly Machine kernels now support nftables. If you’re running Docker or Tailscale on Fly.io, you should no longer need to use iptables-legacy as a workaround on newer containers.

For existing Machines, running fly deploy or fly m update is required to pick up the new kernel. New Machines will automatically use the new kernel.

Please let us know what problems you run into! A few forum posts lead to this being added:

isaacbowen · January 12, 2024, 2:10pm

Beautiful, thank you! Had zero issues adopting this update; works swimmingly.

rubys · January 12, 2024, 2:48pm

Demo:

fly console --image cruizba/ubuntu-dind -C 'entrypoint.sh docker run docker/whalesay cowsay boo'

Topic		Replies	Views
Nftables support? Questions / Help	1	470	January 22, 2023
Nftables support in the kernel	3	1634	October 11, 2022
New Thing: connect your Fly org to Tailscale	8	3276	July 25, 2024
Updated default kernel version Fresh Produce	1	480	June 27, 2023
Custom kernel with Fly Machines? wishlist	1	591	July 21, 2022

Kernel nftables support

Related topics