Kmod-nft-offload -

nft add table offload nft add chain offload { type filter offload } nft add rule offload filter ip saddr 192.168.1.0/24 offload

kmod-nft-offload is a kernel module that enables the offloading of nftables rules to hardware, such as Network Interface Cards (NICs) or SmartNICs. nftables is a powerful packet filtering framework that allows administrators to define complex network rules. However, as the number of rules and network traffic increases, the CPU can become bottlenecked, leading to decreased performance. kmod-nft-offload

By offloading nftables rules to hardware, kmod-nft-offload alleviates the CPU burden, allowing it to focus on more critical tasks. This results in improved network performance, characterized by increased throughput and reduced latency. nft add table offload nft add chain offload