Netfilter nf_tables support

modulename: nf_tables.ko

configname: CONFIG_NF_TABLES

Linux Kernel Configuration
└─>Networking support
└─>Networking options
└─>Network packet filtering framework (Netfilter)
└─>Core Netfilter Configuration
└─>Netfilter nf_tables support
In linux kernel since version 3.10 (release Date: 2013-06-30)  
nftables is the new packet classification framework that intends to
replace the existing {ip,ip6,arp,eb}_tables infrastructure. It
provides a pseudo-state machine with an extensible instruction-set
(also known as expressions) that the userspace 'nft' utility
(http://www.netfilter.org/projects/nftables) uses to build the
rule-set. It also comes with the generic set infrastructure that
allows you to construct mappings between matchings and actions
for performance lookups.

To compile it as a module, choose M here.

source code: