[LTP] [PATCH 2/2] network/iptables: add new test for iptables-tranlsate and nft
Petr Vorel
pvorel@suse.cz
Thu Nov 28 16:34:16 CET 2019
Hi Alexey,
> > But for nft01.sh I got error:
> > nft01 1 TINFO: INIT: Flushing all rules.
> > nft01 1 TCONF: nft not applicable for test 1
> > nft01 2 TINFO: Use nft to DROP packets from particular IP
> > nft01 2 TINFO: Rule to block icmp from 127.0.0.1
> > nft01 2 TFAIL: nft command failed to append new rule.
> > Error: Could not process rule: No such file or directory
> > add rule ip filter INPUT ip protocol icmp ip saddr 127.0.0.1 counter drop
> > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
> It seems there is no ip filter table with INPUT chain? firewalld not installed?
No, firewalld it's installed on openSUSE (+ I'll test it for Debian, but I
expect the same result).
> Is it test running fine after these:
> # nft add table ip filter
> # nft add chain ip filter INPUT '{ type filter hook input priority 0; }'
Kind regards,
Petr
More information about the ltp
mailing list