From: Yu Watanabe <watanabe.yu+github@gmail.com>
Date: Fri, 25 Jul 2025 19:18:37 +0000 (+0900)
Subject: NEWS: announce legacy iptables/libiptc support will be dropped in v259
X-Git-Tag: v258-rc2~69
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=5c68c51045c27d77b7afc211df7304a958d8cf24;p=thirdparty%2Fsystemd.git

NEWS: announce legacy iptables/libiptc support will be dropped in v259

nftables is available since kernel 3.13 (released on 19 January 2014).
Major distributions have already provided nftables, and marked/called
iptables as deprecated or legacy.

Moreover, currently, iptables/libiptc backend does not support IPv6.

Hence, it is not necessary to keep iptables/libiptc backend anymore.
Let's drop it in the next release.

Note, fedora/centos have already disabled iptables/libiptc support since v249.
---

diff --git a/NEWS b/NEWS
index 8286a3a5bbe..ac2cc4fb805 100644
--- a/NEWS
+++ b/NEWS
@@ -170,6 +170,10 @@ CHANGES WITH 258 in spe:
         * The meson option '-Dintegration-tests=' has been deprecated, and will
           be removed in a future release.
 
+        * The legacy iptables support through libiptc will be removed in v259.
+          Only nftables backend will be supported by systemd-networkd and
+          systemd-nspawn since v259.
+
         Service manager/PID1:
 
         * The PrivateUsers= unit setting now accepts a new value "full", which