Hi, Please try the following rule "add rule ip raw PREROUTING notrack" Does that work for you?
No, i've tried this: # nft add table ip raw # nft add rule ip raw PREROUTING notrack Error: Could not process rule: No such file or directory add rule ip raw PREROUTING notrack ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ But i think i might have found the solution in wiki: https://wiki.nftables.org/wiki-nftables/index.php?search=notrack&go=Go https://wiki.nftables.org/wiki-nftables/index.php/Setting_packet_connection_tracking_metainformation Basicaly just use syntax like this: nft add rule ip raw prerouting tcp dport { 80, 443 } notrack Haven't tested yet, but this might be the answer... -- S pozdravem Best regards Tomáš Mudruňka - SPOJE.NET s.r.o.
