Log statement seems to be not working

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi,

Apparently, I can't add log statement in nft firewall. It does not
matter if I do it in config file or in command line. In any case I get
error:

nft add rule filter input log
Error: Could not process rule: No such file or directory
add rule filter input log
^^^^^^^^^^^^^^^^^^^^^^^^^^

It looks like logging module is not there, but actually it is. Here is
output of 'lsmod | grep nft':

nf_conntrack           54664  9
nft_ct,nf_nat_ipv6,nf_nat_ipv4,nf_conntrack_ipv6,nf_conntrack_ipv4,nf_nat_masquerade_ipv6,nf_nat_masquerade_ipv4,nf_nat,nf_conntrack_rtcache
nf_nat                  8935  6
nft_nat,nf_nat_ipv6,nf_nat_ipv4,nf_nat_redirect,nf_nat_masquerade_ipv6,nf_nat_masquerade_ipv4
nf_nat_ipv4             3591  1 nft_chain_nat_ipv4
nf_nat_ipv6             3791  1 nft_chain_nat_ipv6
nf_nat_masquerade_ipv4    1677  1 nft_masq_ipv4
nf_nat_masquerade_ipv6    1613  1 nft_masq_ipv6
nf_nat_redirect         1051  2 nft_redir_ipv6,nft_redir_ipv4
nf_reject_ipv4          1987  2 nft_reject_ipv4,nft_reject_inet
nf_reject_ipv6          2248  2 nft_reject_ipv6,nft_reject_inet
nf_tables              43694 34
nf_tables_inet,nft_reject_ipv6,nft_reject_ipv4,nft_reject_inet,nft_redir_ipv6,nft_redir_ipv4,nft_redir,nft_rbtree,nft_nat,nft_meta,nft_masq_ipv6,nft_masq_ipv4,nft_masq,nft_log,nft_limit,nft_hash,nft_exthdr,nft_ct,nft_counter,nft_chain_route_ipv6,nft_chain_route_ipv4,nft_chain_nat_ipv6,nft_chain_nat_ipv4,nf_tables_ipv6,nf_tables_ipv4
nft_chain_nat_ipv4       984  0
nft_chain_nat_ipv6      1048  0
nft_chain_route_ipv4     980  0
nft_chain_route_ipv6    1108  0
nft_counter             1817  3
nft_ct                  2353  1
nft_exthdr              1232  0
nft_hash                8816  1
nft_limit               2176  0
nft_log                 1767  0
nft_masq                 879  2 nft_masq_ipv6,nft_masq_ipv4
nft_masq_ipv4            787  0
nft_masq_ipv6            787  0
nft_meta                2912  2
nft_nat                 1960  0
nft_rbtree              2063  0
nft_redir               1138  2 nft_redir_ipv6,nft_redir_ipv4
nft_redir_ipv4           788  0
nft_redir_ipv6           852  0
nft_reject              1117  3
nft_reject_ipv6,nft_reject_ipv4,nft_reject_inet
nft_reject_inet         1247  0
nft_reject_ipv4          789  0
nft_reject_ipv6          789  0

Do you have any idea why I can't use logging? I do not receive any error
with more information as it was already stated.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux