subject:"Bug#946289\: ufw\: fails to start with iptables 1.8.4"

Bug#946289: ufw: fails to start with iptables 1.8.4

2020-01-20 Thread Arturo Borrero Gonzalez

On Mon, 6 Jan 2020 12:38:52 -0600 Jamie Strandboge  wrote:
> On Fri, 13 Dec 2019, Jamie Strandboge wrote:
> 
> > I can confirm this. It looks like iptables-restore and iptables6-restore
> > in 1.8.4 has broken -n behavior with the nft varieties.
> 
> This is https://bugzilla.netfilter.org/show_bug.cgi?id=1394
> 

This is probably fixed by:

https://git.netfilter.org/iptables/commit/?id=a103fbfadf4c17b8b12caa57eef72deaaa71a18c

Bug#946289: ufw: fails to start with iptables 1.8.4

2020-01-06 Thread Jamie Strandboge

On Fri, 13 Dec 2019, Jamie Strandboge wrote:

> I can confirm this. It looks like iptables-restore and iptables6-restore
> in 1.8.4 has broken -n behavior with the nft varieties.

This is https://bugzilla.netfilter.org/show_bug.cgi?id=1394

-- 
Email: ja...@strandboge.com
IRC:   jdstrand

Bug#946289: ufw: fails to start with iptables 1.8.4

2019-12-13 Thread Jamie Strandboge

On Fri, 06 Dec 2019, Antonio Terceiro wrote:

> Package: ufw
> Version: 0.36-1
> Severity: grave
> Justification: renders package unusable
> 
> This started since the latest upgrade of iptables (1.8.4). Reverting to
> 1.8.3 (testing) makes it work again.
> 
> This is the contents of the journal for ufw.service:
> 
> -- Logs begin at Thu 2019-12-05 14:15:18 -03, end at Fri 2019-12-06 13:45:35 
> -03. --
> dez 05 14:15:18 lemur ufw-init[455]: Bad argument `DROP'
> dez 05 14:15:18 lemur ufw-init[455]: Error occurred at line: 4
> dez 05 14:15:18 lemur ufw-init[455]: Try `iptables-restore -h' or 
> 'iptables-restore --help' for more information.

I can confirm this. It looks like iptables-restore and iptables6-restore
in 1.8.4 has broken -n behavior with the nft varieties.

Create some simple policy:

$ cat /tmp/pol
*filter
# builtin chains
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT

With 1.8.2-4 on buster:

$ cat /tmp/pol | sudo /usr/sbin/iptables-legacy-restore -n
$ cat /tmp/pol | sudo /usr/sbin/iptables-nft-restore -n
$

With 1.8.4-1 on sid:
$ cat /tmp/pol | sudo /usr/sbin/iptables-legacy-restore -n
$ cat /tmp/pol | sudo /usr/sbin/iptables-nft-restore -n
Bad argument `ACCEPT'
Error occurred at line: 4
Try `iptables-nft-restore -h' or 'iptables-nft-restore --help' for more 
information.

-- 
Email: ja...@strandboge.com
IRC:   jdstrand

Bug#946289: ufw: fails to start with iptables 1.8.4

2019-12-06 Thread Antonio Terceiro

Package: ufw
Version: 0.36-1
Severity: grave
Justification: renders package unusable

This started since the latest upgrade of iptables (1.8.4). Reverting to
1.8.3 (testing) makes it work again.

This is the contents of the journal for ufw.service:

-- Logs begin at Thu 2019-12-05 14:15:18 -03, end at Fri 2019-12-06 13:45:35 
-03. --
dez 05 14:15:18 lemur ufw-init[455]: Bad argument `DROP'
dez 05 14:15:18 lemur ufw-init[455]: Error occurred at line: 4
dez 05 14:15:18 lemur ufw-init[455]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[458]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[458]: Error occurred at line: 4
dez 05 14:15:18 lemur ufw-init[458]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[460]: iptables-restore: line 2 failed
dez 05 14:15:18 lemur ufw-init[465]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[465]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[465]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[468]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[468]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[468]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[473]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[473]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[473]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[474]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[474]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[474]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[476]: iptables-restore v1.8.4 (nf_tables): Chain 
'ufw-user-input' does not exist
dez 05 14:15:18 lemur ufw-init[476]: Error occurred at line: 2
dez 05 14:15:18 lemur ufw-init[476]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[478]: Bad argument `DROP'
dez 05 14:15:18 lemur ufw-init[478]: Error occurred at line: 4
dez 05 14:15:18 lemur ufw-init[478]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[481]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[481]: Error occurred at line: 4
dez 05 14:15:18 lemur ufw-init[481]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[483]: ip6tables-restore: line 2 failed
dez 05 14:15:18 lemur ufw-init[486]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[486]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[486]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[489]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[489]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[489]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[494]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[494]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[494]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[495]: Bad argument `-'
dez 05 14:15:18 lemur ufw-init[495]: Error occurred at line: 3
dez 05 14:15:18 lemur ufw-init[495]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[498]: ip6tables-restore v1.8.4 (nf_tables): 
Chain 'ufw6-user-input' does not exist
dez 05 14:15:18 lemur ufw-init[498]: Error occurred at line: 2
dez 05 14:15:18 lemur ufw-init[498]: Try `ip6tables-restore -h' or 
'ip6tables-restore --help' for more information.
dez 05 14:15:18 lemur ufw-init[503]: Problem running '/etc/ufw/user.rules'
dez 05 14:15:18 lemur ufw-init[503]: Problem running '/etc/ufw/user6.rules'
dez 06 13:45:26 lemur systemd[1]: Starting Uncomplicated firewall...
dez 06 13:45:26 lemur ufw-init[232006]: Bad argument `DROP'
dez 06 13:45:26 lemur ufw-init[232006]: Error occurred at line: 4
dez 06 13:45:26 lemur ufw-init[232006]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 06 13:45:26 lemur ufw-init[232009]: Bad argument `-'
dez 06 13:45:26 lemur ufw-init[232009]: Error occurred at line: 4
dez 06 13:45:26 lemur ufw-init[232009]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 06 13:45:26 lemur ufw-init[232011]: iptables-restore: line 2 failed
dez 06 13:45:26 lemur ufw-init[232014]: Bad argument `-'
dez 06 13:45:26 lemur ufw-init[232014]: Error occurred at line: 3
dez 06 13:45:26 lemur ufw-init[232014]: Try `iptables-restore -h' or 
'iptables-restore --help' for more information.
dez 06 13:45:26 lemur ufw-init[232017]: Bad argument `-'
dez 06 13:45:26 lemur ufw-init[232017]: Error occurred at

Bug#946289: ufw: fails to start with iptables 1.8.4

Bug#946289: ufw: fails to start with iptables 1.8.4

Bug#946289: ufw: fails to start with iptables 1.8.4

Bug#946289: ufw: fails to start with iptables 1.8.4

4 matches

Site Navigation

Mail list logo

Footer information