El 12 de julio de 2019 14:54:00 CEST, Tomas Mudrunka <mudrunka@xxxxxxxxx> escribió: >> Hi, >> >> Please try the following rule >> >> "add rule ip raw PREROUTING notrack" >> >> Does that work for you? > >No, i've tried this: > ># nft add table ip raw ># nft add rule ip raw PREROUTING notrack >Error: Could not process rule: No such file or directory >add rule ip raw PREROUTING notrack >^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > >But i think i might have found the solution in wiki: >https://wiki.nftables.org/wiki-nftables/index.php?search=notrack&go=Go > >https://wiki.nftables.org/wiki-nftables/index.php/Setting_packet_connection_tracking_metainformation > > >Basicaly just use syntax like this: > >nft add rule ip raw prerouting tcp dport { 80, 443 } notrack > >Haven't tested yet, but this might be the answer... Yes sorry, that should work. I forgot the tcp part.
