On Wed, 29 May 2019 06:24:09 -0600 Nicolas Bock <nicolasbock@xxxxxxxxx> wrote: > On Wed, May 29 2019, Florian Westphal wrote: > > > Nicolas Bock <nicolasbock@xxxxxxxxx> wrote: > >> I load firewall rules via iptables-restore early on during > >> boot. Up to kernel and including 5.0.x this works flawlessly, > >> however, switching to kernel 5.1.x (I tried several versions) > >> the relevant kernel modules are not loaded on > >> `iptables-restore` anymore and the command fails. After > >> manually loading the modules, iptables (1.8.3) complains that > >> it 'can not initialize: no child processes'. So far I haven't > >> found a way to use iptables in any way on 5.1.x. Was the > >> iptables interface deprecated/removed in 5.1.x? Or am I missing > >> something? > > > > No, if its broken thats a regression, I am not aware of any > > change that would cause this. > > > > iptables-restore works for me on 5.1.3 kernel. > > Thanks for the data point. Could you suggest any steps I can take > to further debug the issue? My approach so far has been to take > the kernel config from a working 5.0.x kernel and compile kernel > 5.1.x with it. > > I presume based on your statement that this approach is expected > to work. Is that correct? Or do I need to change some > configurations going to 5.1.x? > > Thanks, > > Nick Do you issue "make oldconfig" before building 5.1.x kernel with 5.0.x config?
