28 Jul
2021
28 Jul
'21
2:49 p.m.
On Jul 28, 2021, at 08:44, Jonathan Billings billings@negate.org wrote:
For what it’s worth, if you use the fail2ban-firewalld package, it uses ipset rather than iptables, which is more efficient.
That’s in CentOS 7 though. CentOS 8 firewalld uses nft instead of the older netfilter (iptables/ipset) code.
-- Jonathan Billings