I thought I should use something a bit more robust than my pile of shell scripts for firewalling my server so tried out

At first it was a total disaster and would not add rules to the nftables no matter what I did. Digging around, there is a bug with iptables-nft especially around iptables-restore. Updating iptables package fixed things up nicely.

Mastodon on Dropbear

