[Dnsmasq-discuss] dnsmasq ipset like support for nftables

GopiKrishna Kodali gkodali at zededa.com
Fri May 7 09:36:14 UTC 2021


We currently use iptables with ipsets and dnsmasq. Dnsmasq in our case is configured to populate the ipsets in kernel
during DNS resolution process. Iptables then use these populated ipsets.

We are looking to see if something similar can be done with nftables and dnsmasq. We understand the nftables does not support using external ipsets but has its own notion of sets. Does dnsmasq already support populating nftables sets or Is there a plan to implement such feature in dnsmasq?


