Follow
Well, shit. Firewalld has switched from using iptables as the backend, so one can't sanity check rules using that anymore. It's now using nftables. Another new thing to learn.
I think iptables is considered deprecated, though some distros have something that hosts iptables atop nftables to help with the migration.
@lnxw48a1 yeah. Reminds me of the ip tools fiasco.
I discovered this when I migrated some dev boxes to CentOS Stream. So don't panic when it looks like it dumped your firewall rules.
https://firewalld.org/2018/07/nftables-backend