Kmod-nft-offload Online

nft -a list ruleset # Shows rule handles Check NIC offload counters:

In short, it allows certain nftables rules (e.g., forwarding, DNAT, SNAT) to be programmed directly into that supports flow offloading. How It Works Without offload: kmod-nft-offload

lsmod | grep nft_offload Create a simple forwarding rule with offload: nft -a list ruleset # Shows rule handles

Packet → NIC → Host CPU → nftables (kernel) → Forward/Drop → Host CPU → NIC → Wire Every packet consumes CPU cycles, limiting throughput, especially at 10 GbE, 25 GbE, or higher. it allows certain nftables rules (e.g.

apt install linux-modules-extra-$(uname -r) Load the module:

nft -a list ruleset # Shows rule handles Check NIC offload counters:

In short, it allows certain nftables rules (e.g., forwarding, DNAT, SNAT) to be programmed directly into that supports flow offloading. How It Works Without offload:

lsmod | grep nft_offload Create a simple forwarding rule with offload:

Packet → NIC → Host CPU → nftables (kernel) → Forward/Drop → Host CPU → NIC → Wire Every packet consumes CPU cycles, limiting throughput, especially at 10 GbE, 25 GbE, or higher.

apt install linux-modules-extra-$(uname -r) Load the module: