Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > it.comp.os.linux.debian > #10540

Re: [X-post] Tradurre regola di iptables per nftables su Bullseye

From Bullseye01 <io@io.it>
Newsgroups it.comp.os.linux.iniziare, it.comp.os.linux.debian
Subject Re: [X-post] Tradurre regola di iptables per nftables su Bullseye
Date 2022-12-18 17:35 +0100
Organization Aioe.org NNTP Server
Message-ID <tnnfgc$1giq$1@gioia.aioe.org> (permalink)
References <tmikqe$8lm$2@gioia.aioe.org> <tmitrb$3m1mm$3@dont-email.me>

Cross-posted to 2 groups.

Show all headers | View raw

> nft insert rule ip filter FORWARD iifname "enp0s25" oifname "wlo1" counter
> accept
> 
> nft insert rule ip nat POSTROUTING oifname "wlo1" counter masquerade
In questo modo tutto funziona:

ip a add 10.0.0.1/255.255.240.0 dev enp3s0
echo 1 > /proc/sys/net/ipv4/ip_forward
systemctl start isc-dhcp-server
iptables -I FORWARD -i enp3s0 -o wlp2s0 -j ACCEPT
iptables -t nat -I POSTROUTING -o wlp2s0 -j MASQUERADE

Se invece di iptable inserisco nftables riscontro invece questo errore:

# nft insert rule ip filter FORWARD iifname "enp3s0" oifname "wlp2s0" 
counter accept

Error: Could not process rule: No such file or directory
insert rule ip filter FORWARD iifname enp3s0 oifname wlp2s0 counter accept
                ^^^^^^
Paradossalmente se dopo aver impartito le rotte con iptables uso quelle 
tradotte per nftables non ho errori...

Da quanto letto qui 
https://unix.stackexchange.com/questions/537912/nftables-rule-no-such-file-or-directory-error/618789 
probabilmente nftables non può essere eseguito al volo ma necessità che 
ci sia sotto del terreno?

Saluti.
^Bart

Back to it.comp.os.linux.debian | Previous | NextPrevious in thread | Next in thread | Find similar

Thread

[X-post] Tradurre regola di iptables per nftables su Bullseye ^Bart <gabriele1NOSPAM@hotmail.com> - 2022-12-04 18:19 +0100
  Re: [X-post] Tradurre regola di iptables per nftables su Bullseye rootkit <rootkit@email.it> - 2022-12-04 19:53 +0000
    Re: [X-post] Tradurre regola di iptables per nftables su Bullseye ^Bart <gabriele1NOSPAM@hotmail.com> - 2022-12-04 22:03 +0100
    Re: [X-post] Tradurre regola di iptables per nftables su Bullseye Bullseye01 <io@io.it> - 2022-12-18 17:35 +0100
      Re: [X-post] Tradurre regola di iptables per nftables su Bullseye rootkit <rootkit@email.it> - 2022-12-18 18:13 +0000
        Re: [X-post] Tradurre regola di iptables per nftables su Bullseye ^Bart <gabriele1NOSPAM@hotmail.com> - 2022-12-18 20:14 +0100

csiph-web