bugzilla-daemon at netfilter.org
2019-Jul-05 14:03 UTC
[Bug 1349] New: "nft list ruleset" shows rules twice
https://bugzilla.netfilter.org/show_bug.cgi?id=1349
Bug ID: 1349
Summary: "nft list ruleset" shows rules twice
Product: nftables
Version: unspecified
Hardware: x86_64
OS: Debian GNU/Linux
Status: NEW
Severity: minor
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: ElevatorCatalyst at protonmail.com
Command output of "nft list ruleset" shows rule entries (but not
tables/chains
etc) twice, ruleset which is loaded before does not contain double entries:
### sample ruleset ###
table ip filter {
chain input {
type filter hook input priority 0; policy drop;
iif "lo" accept
ct state established,related accept
}
### "nft list ruleset" output ###
table ip filter {
chain input {
type filter hook input priority 0; policy drop;
iif "lo" accept
ct state established,related accept
iif "lo" accept
ct state established,related accept
}
###
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190705/040e7264/attachment.html>
bugzilla-daemon at netfilter.org
2019-Jul-05 14:06 UTC
[Bug 1349] "nft list ruleset" shows rules twice
https://bugzilla.netfilter.org/show_bug.cgi?id=1349 --- Comment #1 from ElevatorCatalyst at protonmail.com --- libnftnl4 1.0.7-1 nftables 0.7-1 linux-image-4.9.0-9 4.9.168-1+deb9 -- You are receiving this mail because: You are watching all bug changes. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190705/3ab1e7bb/attachment.html>
bugzilla-daemon at netfilter.org
2019-Jul-12 10:14 UTC
[Bug 1349] "nft list ruleset" shows rules twice
https://bugzilla.netfilter.org/show_bug.cgi?id=1349
Florian Westphal <fw at strlen.de> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |WORKSFORME
Status|NEW |RESOLVED
CC| |fw at strlen.de
--- Comment #2 from Florian Westphal <fw at strlen.de> ---
(In reply to ElevatorCatalyst from comment #1)> libnftnl4 1.0.7-1
> nftables 0.7-1
> linux-image-4.9.0-9 4.9.168-1+deb9
Thats a very old nftables version -- also, I can't reproduce this.
Tried this:
nft flush rulset
nft -f file
nft list ruleset
... and i get expected output.
Note that, restoring a ruleset twice (without prepending
a "flush ruleset"), will result in all rules to be loaded
again, i.e. you would see such a duplication.
--
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.netfilter.org/pipermail/netfilter-buglog/attachments/20190712/c786f87b/attachment.html>