From 158d5eefbc8a078ba6ed986ccfb6b0e958054af5 Mon Sep 17 00:00:00 2001
From: Sun Knudsen <hello@sunknudsen.com>
Date: Sat, 19 Feb 2022 11:24:21 -0500
Subject: [PATCH] Added nftables rules

---
 .../README.md                                       | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/how-to-benchmark-server-performance-using-speedtest-and-sysbench/README.md b/how-to-benchmark-server-performance-using-speedtest-and-sysbench/README.md
index 8d1ffda..9d52e8c 100644
--- a/how-to-benchmark-server-performance-using-speedtest-and-sysbench/README.md
+++ b/how-to-benchmark-server-performance-using-speedtest-and-sysbench/README.md
@@ -94,13 +94,24 @@ apt install -y speedtest sysbench
 
 ### Benchmark network
 
-Depending on iptables configuration, running the following commands may be required.
+> Heads-up: depending on iptables or nftables firewall configuration, running following commands may be required.
+
+#### iptables
 
 ```shell
 iptables -A OUTPUT -p tcp -m tcp --dport 8080 -m state --state NEW -j ACCEPT
 ip6tables -A OUTPUT -p tcp -m tcp --dport 8080 -m state --state NEW -j ACCEPT
 ```
 
+#### nftables
+
+> Heads-up: replace `firewall` if needed (see `nft list ruleset`).
+
+```shell
+nft add rule ip firewall output tcp dport http-alt accept
+nft add rule ip6 firewall output tcp dport http-alt accept
+```
+
 ```console
 $ speedtest