nftables and connection tracking

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello,

I have problem to get connection tracking work when using nftables. I
have this setup on my fedora 32:

table ip raw {
        chain PREROUTING {
                type filter hook prerouting priority raw; policy accept;
                meta l4proto udp udp dport 5060 # CT helper sip
        }

        chain OUTPUT {
                type filter hook output priority raw; policy accept;
                meta l4proto udp udp dport 5060 # CT helper sip
        }
}

/etc/modules-load.d/conntrack.conf:

nf_conntrack_ftp
nf_conntrack_sip
nf_conntrack_h323
nf_conntrack_irc
nf_conntrack_amanda
nf_conntrack_netbios_ns
nf_conntrack_netlink
nf_conntrack_pptp
nf_conntrack_tftp
nf_conntrack_broadcast
nf_conntrack_snmp
nf_conntrack_sane
nf_nat
nf_nat_ftp
nf_nat_sip
nf_nat_h323
nf_nat_irc
nf_nat_amanda
nf_nat_pptp
nf_nat_snmp_basic
nf_nat_tftp

but I get no sound. When using iptables, everything is working. Should
this be configured diffrent way?

Thanks.

Marek
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux