I have been reluctant to use #ufw, but after learning more about it, I think it is not likely that I am using #iptables directly again.

It covers very well my simple use cases, blocking and forwarding, plus the added benefits of automatic persistence and enabling forwarding in the kernel.