Hello all,
I'm running into the following error when trying a nftables NAT rule.
It appears the inet family does not work.
OS specs:
Ubuntu 16.04
Kernel 4.13.0-36-generic
nftables version 0.8.2 (Joe Btfsplk)
Working Commands
nft add table test
nft add chain test postrouting { type nat hook postrouting priority 0 \; }
Failing Commands
nft add table inet test
nft add chain inet test postrouting { type nat hook postrouting priority 0 \; }
Error: Could not process rule: No such file or directory
add chain inet test postrouting { type nat hook postrouting priority 0 ; }
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
To summarize when using the inet family there is a failure.
lsmod |grep ^nf
nft_chain_nat_ipv4 16384 1
nf_nat_ipv4 16384 1 nft_chain_nat_ipv4
nf_nat 28672 1 nf_nat_ipv4
nft_meta 16384 6
nf_conntrack_ipv6 20480 22
nf_defrag_ipv6 36864 1 nf_conntrack_ipv6
nf_conntrack_ipv4 16384 23
nf_defrag_ipv4 16384 1 nf_conntrack_ipv4
nft_ct 20480 5
nf_conntrack 131072 5
nft_ct,nf_conntrack_ipv6,nf_conntrack_ipv4,nf_nat_ipv4,nf_nat
nf_tables_inet 16384 3
nf_tables_ipv6 16384 1 nf_tables_inet
nf_tables_ipv4 16384 2 nf_tables_inet
nf_tables 86016 37
nft_ct,nft_chain_nat_ipv4,nf_tables_ipv6,nf_tables_ipv4,nft_meta,nf_tables_inet
nfnetlink 16384 1 nf_tables
What am I missing if anything?
--
JD
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
