Kernel nftables support

zifnab · January 11, 2024, 11:02pm

Users here in the community have asked for nftables support and here it is:

Fly Machine kernels now support nftables. If you’re running Docker or Tailscale on Fly.io, you should no longer need to use iptables-legacy as a workaround on newer containers.

For existing Machines, running fly deploy or fly m update is required to pick up the new kernel. New Machines will automatically use the new kernel.

Please let us know what problems you run into! A few forum posts lead to this being added:

isaacbowen · January 12, 2024, 2:10pm

Beautiful, thank you! Had zero issues adopting this update; works swimmingly.

rubys · January 12, 2024, 2:48pm

Demo:

fly console --image cruizba/ubuntu-dind -C 'entrypoint.sh docker run docker/whalesay cowsay boo'

Topic		Replies	Views
Custom kernel with Fly Machines? wishlist	1	510	July 21, 2022
Deploy unikernel on machines wishlist	3	190	November 21, 2023
Include nfs module in the kernel of the VM	2	498	August 14, 2023
Fly "containers" as a CI runners Phoenix	5	949	April 9, 2021
Deploying an app with fastapi backend and svelte frontend	3	1468	October 4, 2022

Kernel nftables support

Related Topics