Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Enable nftables support in kernel / module #1421

Closed
felixsanz opened this issue Jun 23, 2016 · 7 comments
Closed

Enable nftables support in kernel / module #1421

felixsanz opened this issue Jun 23, 2016 · 7 comments

Comments

@felixsanz
Copy link

@felixsanz felixsanz commented Jun 23, 2016

Issue Report

Feature Request

nf_tables module or kernel support for nftables.

Environment

All

Desired Feature

nftables

Other Information

Reproduce in toolbox:

  1. dnf install nftables
  2. nft -f /etc/nftables/ipv4-filter # Error

Check:

modprobe nf_tables
modprobe: FATAL: Module nf_tables not found.
@TerraTech
Copy link

@TerraTech TerraTech commented Oct 30, 2016

@crawford would this include the 'nft' binary in addition to enabling it in the kernel?

@crawford
Copy link
Member

@crawford crawford commented Nov 1, 2016

We could probably include nft, but I'm not certain yet.

@sanmai-NL
Copy link

@sanmai-NL sanmai-NL commented May 26, 2017

@crawford: What factors hold this up or need to be cleared up?

@crawford
Copy link
Member

@crawford crawford commented Jun 2, 2017

We just need to take a look at the nft binary and make sure it's not doing anything crazy. It's very unlikely that anything will come up, but we have to take a look (and haven't had time yet).

@sanmai-NL
Copy link

@sanmai-NL sanmai-NL commented Jul 12, 2017

@crawford: can anyone help you with this process?

@crawford
Copy link
Member

@crawford crawford commented Jul 12, 2017

@bgilbert
Copy link
Member

@bgilbert bgilbert commented Jul 26, 2017

This is done in coreos/coreos-overlay#2662 and should be included in 1492.0.0. For now, we'll be shipping the nft binary and the default rulesets (the latter in /usr/share/nftables) but no automation to save rules at shutdown or restore them at startup.

@bgilbert bgilbert closed this Jul 26, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
6 participants
You can’t perform that action at this time.