On 13 September 2017 at 15:23, Thomas Rosenstein <thomas.rosenstein@xxxxxxxxxxxxxxxx> wrote: > Hi, > > it is now working and my router receives the return packets, but they are > not forwarded and dropped after the MANGLE PREROUTING chain. > > What could be the issue, or where in the kernel could I check what's > happening? Is there some flag to enable detailed tracing? > > Based on tcpdump the packet is okay regarding checksums. > Based on this > https://upload.wikimedia.org/wikipedia/commons/3/37/Netfilter-packet-flow.svg > it breaks somwhere between mangle and nat PREROUTING. > > Any suggestions or ideas are welcome! Please, avoid top-posting, thanks :-) There is information about debugging in the wiki [0], and is rather easy to use. [0] https://wiki.nftables.org/wiki-nftables/index.php/Ruleset_debug/tracing -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
