> I can't reproduce the issue here.
Thanks Arturo. What distribution are you using? Hmm - any suggestions about
how to "poke" at this issue on my end?
BTW, I can load this file without problem when replacing "reject" with "drop".
Whatever the problem, it is "triggered" by the "reject" statement.
I was concerned that perhaps my system was in some inconsistent upgrade state,
because I noticed I was actually still running kernel 4.8.1-1, not 4.8.4-1.
I tried a reboot and recompiled
nftables-git 0.6.r96.gbb636b8-1
libnftnl-git 1.0.6.r68.gc26951e-1
And now, I get this:
/etc/test.nft:4:1-2: Error: Could not process rule: Operation not supported
table ip private {
^^
Well, that's not good, because something changed, from "No such file or
directory" to "Operation not supported", but it is still not right. Of course,
in both cases, the error messages are "useless", not saying *what* file, and not
saying *what* operation.
I also tried re-installing the stock
libnftnl 1.0.6-1
nftables 1:0.6-2
Those give the same error message.
Should the linux kernel have any effect on this error?
I noticed there is some debugging support in nft. The error message is
displayed last with debug scanner or parser, and displayed first with debug
eval. With debug mnl, the error is displayed in the midst of the output.
Hmm - any thoughts?
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
