By migrating, do you mean you've removed the compatibility layer that comes with modern Linux distributions? They all ship with iptables as a wrapper over nftables that does the translation.

The binary is iptables-nft. Just type iptables -V in the console. If the output contains "nf_tables", then your iptables commands are actually managing nftables rules and you can run my script.

As for the lists, they're just a simple matter of pull, awk, sed, sort, etc ... The reason they're not included in the script is mainly because when a couple of hundred servers use the script, each server doing it individually will put unnecessary strain on Onionoo servers for absolutely no good reason. Not to mention that Onionoo server is updated hourly anyway so pulling the lists every 10 minutes is not going to necessarily give you a different result.

The lists are available here:

https://github.com/Enkidu-6/tor-relay-lists

On 12/3/2025 5:10 PM, forest-relay-contact--- via tor-relays wrote:

Hello.

> Try this:
> https://github.com/Enkidu-6/tor-ddos
> It should greatly reduce if not eliminate it.

I've been thinking of setting that up on my relays as well. Do you have
any version for nftables? All of my relays have been migrated to nft
from iptables, and my knowledge of nft syntax is rudimentary.

Also, how do you generate files like 2-or.txt and snowflake.txt? I'd
rather pull directly from Tor's site over an API than from GitHub.

Regards,
forest

> _______________________________________________
> tor-relays mailing list -- tor-relays@lists.torproject.org
> To unsubscribe send an email to tor-relays-leave@lists.torproject.org