:: Re: [DNG] Which qemu version is shi…
Startseite
Nachricht löschen
Nachricht beantworten
Autor: Mario Marietto
Datum:  
To: wirelessduck
CC: dng
Betreff: Re: [DNG] Which qemu version is shipped by default with devuan 3 ?
I've created a post on Reddit :

https://www.reddit.com/r/devuan/comments/15swwij/neither_iptables_nor_nftable_are_working_for_me/

where I tried to explain what my problem is. Unfortunately no one
replied right now.


On Wed, Aug 16, 2023 at 7:13 PM Mario Marietto <marietto2008@???>
wrote:

> They also suggest to check these kernel parameters :
>
> root@devuan:~# grep CONFIG_NF_TABLES_INET= /boot/config-`uname -r`
> CONFIG_NF_TABLES_INET=y
>
> root@devuan:~# grep CONFIG_NFT_COUNTER= /boot/config-`uname -r`
> CONFIG_NFT_COUNTER=y
>
> root@devuan:~# grep CONFIG_NFT_OBJREF= /boot/config-`uname -r`
> CONFIG_NFT_OBJREF=y
>
> but they seem correct,right ?
>
>
> On Wed, Aug 16, 2023 at 7:04 PM Mario Marietto <marietto2008@???>
> wrote:
>
>> Reading from here : https://unix.stackexchange.com/questions/537912/nftables-rule-no-such-file-or-directory-error
>>
>> I tried to do the following :
>>
>> root@devuan:~# nft add table ip filter
>>
>> root@devuan:~# nft add chain ip filter INPUT { type filter hook input priority 0 \; } # create chain
>> root@devuan:~# nft add rule ip nat POSTROUTING oifname "mlan0" counter masquerade
>> Error: Could not process rule: No such file or directory
>> add rule ip nat POSTROUTING oifname mlan0 counter masquerade
>>             ^^^

>>
>> root@devuan:~# nft list ruleset
>> table ip filter {
>>         chain INPUT {
>>                 type filter hook input priority filter; policy accept;
>>         }
>> }

>>
>>
>>
>> On Wed, Aug 16, 2023 at 6:58 PM Mario Marietto <marietto2008@???>
>> wrote:
>>
>>> root@devuan:~# iptables-translate -t nat -A POSTROUTING -o eth0 -j
>>> MASQUERADE
>>> nft add rule ip nat POSTROUTING oifname "eth0" counter masquerade
>>>
>>> root@devuan:~# ifconfig
>>>
>>> lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
>>>        inet 127.0.0.1  netmask 255.0.0.0
>>>        inet6 ::1  prefixlen 128  scopeid 0x10<host>
>>>        loop  txqueuelen 1000  (Local Loopback)
>>>        RX packets 28  bytes 3449 (3.3 KiB)
>>>        RX errors 0  dropped 0  overruns 0  frame 0
>>>        TX packets 28  bytes 3449 (3.3 KiB)
>>>        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

>>>
>>> mlan0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
>>>        inet 192.168.1.6  netmask 255.255.255.0  broadcast 192.168.1.255
>>>        inet6 fe80::47b1:6a1e:c9a8:5e73  prefixlen 64  scopeid 0x20<link>
>>>        ether 50:22:c1:e9:44:63  txqueuelen 1000  (Ethernet)
>>>        RX packets 656  bytes 59350 (57.9 KiB)
>>>        RX errors 0  dropped 0  overruns 0  frame 0
>>>        TX packets 351  bytes 35970 (35.1 KiB)
>>>        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

>>>
>>> root@devuan:~# nft add rule ip nat POSTROUTING oifname "mlan0" counter
>>> masquerade
>>>
>>> Error: Could not process rule: No such file or directory
>>> add rule ip nat POSTROUTING oifname mlan0 counter masquerade
>>>            ^^^

>>>
>>>
>>>
>>> On Wed, Aug 16, 2023 at 1:03 PM wirelessduck--- via Dng <
>>> dng@???> wrote:
>>>
>>>>
>>>>
>>>> > On 16 Aug 2023, at 20:13, Mario Marietto <marietto2008@???>
>>>> wrote:
>>>> >
>>>> > 
>>>> > It's too much out of my knowledge. I'm not able to understand what's
>>>> the correct syntax to use.
>>>>
>>>> The manpage for iptables-translate says it takes the same arguments as
>>>> iptables. You can try:
>>>>
>>>> iptables-translate -t nat -A POSTROUTING -o eth0 -j MASQUERADE
>>>>
>>>> and that should output the equivalent nftables command. I don’t have a
>>>> terminal here to try that myself right now.
>>>>
>>>> Tom
>>>> _______________________________________________
>>>> Dng mailing list
>>>> Dng@???
>>>> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
>>>>
>>>
>>>
>>> --
>>> Mario.
>>>
>>
>>
>> --
>> Mario.
>>
>
>
> --
> Mario.
>



--
Mario.