Maybe I haven't set up iptables rules properly? This is the first rule in INPUT table: iptables -I INPUT -p udp -m udp --sport 10080 -j NFQUEUE --queue-num 5 --queue-bypass Thanks! On Tue, Jun 29, 2021 at 8:38 AM Florian Westphal <fw@xxxxxxxxx> wrote: > > Psyspy 22 <psyspy2020@xxxxxxxxx> wrote: > > Thanks Florian. I added that flag, no dice. > > > > If I run the libmnl dump example, it successfully prints all > > conntrack entries. I would assume all the conntrack related kernel > > modules are loaded. I am on 4.1 kernel. I could be missing something. > > No idea. attr[NFQA_CT] is set as expected on 5.12.12 when I enable > NFQA_CFG_F_CONNTRACK in example/nf-queue.c
