On 12/5/20 1:15 PM, Dan Egli wrote: > Hey guys. I've got a question. I can't figure this out. I've got my > systemd set to run the dhcp server and to forward packets on, using IP > Masquerading on ipv4. But when I start networkd, it complains that > masquerading is not supported. I've looked in the kernel config and I > don't see any masquerade options except as targets for the various > ??tables programs. The only firewall I use is iptables, and the > masquerade target is set to built in (=y vs. =m). So why would systemd > keep reporting that ip masquerading isn't supported? Here's a log file > entry: enp0s3: Could not enable IP masquerading, ignoring: Operation > not supported
If your distro is using an iptables-to-nftables rule translator for nftables compatibility with various iptables-dependant tools, you might see something like this. It sticks in my mind that masquerade was one of the unsupported targets. On Debian, the translator is iptables-nft, and iptables is symlinked to it by default; iptables-legacy is the original iptables tool, and the symlink can be swapped to use iptables instead of nftables. Your distro may be doing something similar. ;-Daniel /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
