Security Hardening
iptables to nftables: Controlled Migration Week
Translate rule intent, build nftables sets, and rehearse rollback windows with ops-friendly diffs.
- Duration
- 2 weeks · 16 lab hours
- Format
- Live working sessions
- Skill level
- Advanced
- Certification path
- Security specialty prep
- Informational price
- ₩129,000
What the labs include
- Side-by-side translation worksheets with mentor checkpoints
- Set/map usage for allowlists without exploding rule counts
- Performance sampling before and after cutovers
- Packet tracing labs with bounded capture windows
- Change communication templates for enterprise clients
- Rollback drills with timed restores
- Capstone: present a migration plan to a pretend change board
Outcomes you can show a lead
- Convert a representative iptables ruleset to nftables with tests
- List ambiguity hotspots that require stakeholder sign-off
- Run a rollback rehearsal that finishes inside the lab SLA window
Responsible instructor
Eunji Han
Lab Platform Engineer with kernel-facing debugging habits.
FAQ
No. We mention it as a future path, but exercises stay in nftables core.
Learner notes
Bad translation labs were frustrating in the moment, invaluable afterward.
Change board capstone mirrored our internal template—surprisingly emotional validation.