Hello,
with the backports nftables Version
nftables:
Installed: 0.4-5~bpo8+1
Candidate: 0.4-5~bpo8+1
we got following error messages:
systemctl restart nftables.service
Job for nftables.service failed. See 'systemctl status nftables.service' and 'journalctl -xn' for details.
22:26:00 root@ares:/etc# systemctl status nftables.service
● nftables.service - nftables
Loaded: loaded (/lib/systemd/system/nftables.service; enabled)
Active: failed (Result: exit-code) since Tue 2015-05-12 22:26:00 CEST; 6s ago
Docs: man:nft(8)
http://wiki.nftables.org
Process: 9624 ExecStop=/usr/sbin/nft flush ruleset (code=exited, status=1/FAILURE)
Process: 9627 ExecStart=/usr/sbin/nft -f /etc/nftables.conf (code=exited, status=1/FAILURE)
Main PID: 9627 (code=exited, status=1/FAILURE)
May 12 22:26:00 ares nft[9627]: /etc/nftables.conf:3:1-14: Error: Could not process rule: Address family not supported by protocol
May 12 22:26:00 ares nft[9627]: flush ruleset
May 12 22:26:00 ares nft[9627]: ^^^^^^^^^^^^^^
May 12 22:26:00 ares nft[9627]: /etc/nftables.conf:3:1-14: Error: Could not process rule: Address family not supported by protocol
May 12 22:26:00 ares nft[9627]: flush ruleset
May 12 22:26:00 ares nft[9627]: ^^^^^^^^^^^^^^
May 12 22:26:00 ares systemd[1]: nftables.service: main process exited, code=exited, status=1/FAILURE
May 12 22:26:00 ares systemd[1]: Failed to start nftables.
May 12 22:26:00 ares systemd[1]: Unit nftables.service entered failed state.
journalctl -xn
-- Logs begin at Tue 2015-05-05 22:01:09 CEST, end at Tue 2015-05-12 22:26:00 CEST. --
May 12 22:26:00 ares systemd[1]: Unit nftables.service entered failed state.
May 12 22:26:00 ares nft[9627]: /etc/nftables.conf:3:1-14: Error: Could not process rule: Address family not supported by protocol
May 12 22:26:00 ares nft[9627]: flush ruleset
May 12 22:26:00 ares nft[9627]: ^^^^^^^^^^^^^^
May 12 22:26:00 ares nft[9627]: /etc/nftables.conf:3:1-14: Error: Could not process rule: Address family not supported by protocol
May 12 22:26:00 ares nft[9627]: flush ruleset
May 12 22:26:00 ares nft[9627]: ^^^^^^^^^^^^^^
May 12 22:26:00 ares systemd[1]: nftables.service: main process exited, code=exited, status=1/FAILURE
May 12 22:26:00 ares systemd[1]: Failed to start nftables.
-- Subject: Unit nftables.service has failed
-- Defined-By: systemd
-- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel
--
-- Unit nftables.service has failed.
--
-- The result is failed.
May 12 22:26:00 ares systemd[1]: Unit nftables.service entered failed state.
I think, we need a newer kernel to get "flush ruleset" work.
Thank you!
From: "Vincent Cheng" <vcheng@debian.org>
To: "Arturo Borrero Gonzalez" <arturo.borrero.glez@gmail.com>
Cc: "debian-backports" <debian-backports@lists.debian.org>
Sent: Tuesday, May 12, 2015 9:42:59 AM
Subject: Re: nftables for jessie-backports
Hi Arturo,
On Mon, May 11, 2015 at 11:43 PM, Arturo Borrero Gonzalez
<arturo.borrero.glez@gmail.com> wrote:
> Hi there!
>
> I plan to include and maintain nftables in jessie-backports.
> The libnftnl package was already uploaded, and this is the last step:
> nftables itself.
>
> I've uploaded nftables to mentors.d.n [0]. Would you like to review and upload?
>
> The package was build this way:
> % dpkg-buildpackage -tc -sa
>
> Best regards.
>
> [0] http://mentors.debian.net/debian/pool/main/n/nftables/nftables_0.4-5~bpo8+1.dsc
Uploaded, thanks for your contribution to Debian!
Regards,
Vincent
--
To UNSUBSCRIBE, email to debian-backports-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: https://lists.debian.org/
[🔎] CACZd_tBAaL0J_V8V3B_dceZhTy8gOu7xf7-cthsNNuvoGy8m0Q@mail.gmail.com