On 12/23/22 09:02, Atkins, Brian wrote:
I found one of the best ways to understand what's happening is to use tracing (https://wiki.nftables.org/wiki-nftables/index.php/Ruleset_debug/tracing) . You can see the traffic move through the chains and rules and get a better understanding of how your matching is or isn't working. I often just set it on my input chain, or on another chain where I want to focus; you don't have to use a pre-routing chain unless you need to catch the traffic earlier.
Thank you!
