Re: is nft running? how do I get info?

2023-04-25 Thread David Wright
On Tue 25 Apr 2023 at 15:21:50 (+), Bonno Bloksma wrote: > I consider not having nftable enabled by default in bookworm a bug, let me > explain why... > > >> It seems the bookworm release comes with NO firewall solution enabled ! > >> Iptables is no longer installed by default > >> The nft

Re: is nft running? how do I get info?

2023-04-25 Thread songbird
Bonno Bloksma wrote: ... > Why, now that we are at bookworm, is the nftables service not enabled by > default? With a default ruleset that pretty much leaves it all open but is a > starting point. > If we do not want that, then at least the default config should contain a > warning about first

RE: is nft running? how do I get info?

2023-04-25 Thread Bonno Bloksma
Hi David and others, I consider not having nftable enabled by default in bookworm a bug, let me explain why... >> It seems the bookworm release comes with NO firewall solution enabled ! >> Iptables is no longer installed by default >> The nft service is NOT enabled by default. > It seems

Re: is nft running? how do I get info?

2023-04-25 Thread David Wright
On Tue 25 Apr 2023 at 08:59:23 (+), Bonno Bloksma wrote: > > Did I discover a bug in the bookwork release? I think we can argue both for > and against but I am calling it a bug. > > It seems the bookworm release comes with NO firewall solution enabled ! > Iptables is no longer installed by

Re: is nft running? how do I get info?

2023-04-25 Thread Greg Wooledge
On Tue, Apr 25, 2023 at 02:11:45PM +0500, Stanislav Vlasov wrote: > And, if you use 'su' command, please use it right: > su - There are many "right" ways to elevate privileges. See for more options.

Re: is nft running? how do I get info?

2023-04-25 Thread Anssi Saari
Bonno Bloksma writes: > Also trying command completion with the nft, or even nf, show no > results. Using just the n for completion gives just the networking > service. It seems others covered your other issues so I'll just comment on this. Maybe your command completion is just bad? I can't

RE: is nft running? how do I get info?

2023-04-25 Thread Bonno Bloksma
Hi All, Did I discover a bug in the bookwork release? I think we can argue both for and against but I am calling it a bug. It seems the bookworm release comes with NO firewall solution enabled ! Iptables is no longer installed by default The nft service is NOT enabled by default. After

RE: is nft running? how do I get info?

2023-04-25 Thread Bonno Bloksma
Hi Dan, >> I thought I understood it all and as far as I know I have a working config. >> But just trying to get a listing of the running config shows NOTHING. >> linbookwormtest:~# nft list ruleset >> linbookwormtest:~# > > That says that you have no firewall set up. That was my conclusion as

Re: is nft running? how do I get info?

2023-04-25 Thread Christoph Brinkhaus
Am Tue, Apr 25, 2023 at 07:58:56AM + schrieb Bonno Bloksma: Hi Bonno, > Hi Anssi, > > >> There is nothing in the journal about nft > >> linbookwormtest:~#journalctl -t nft -- Journal begins at Mon > >> 2023-03-27 13:07:50 CEST, ends at Mon 2023-04-24 12:18:07 CEST. > >> -- -- No entries -- >

Re: is nft running? how do I get info?

2023-04-25 Thread Stanislav Vlasov
вт, 25 апр. 2023 г. в 13:32, Bonno Bloksma : > > Debian's nftables package includes a systemd service to run nftables. You > > might want to run systemctl status nftables first and then enable and to > > start the service. > Unfortunately nft is not a service. Trying the service command with nft

RE: is nft running? how do I get info?

2023-04-25 Thread Bonno Bloksma
Hi Anssi, >> There is nothing in the journal about nft >> linbookwormtest:~#journalctl -t nft >> -- Journal begins at Mon 2023-03-27 13:07:50 CEST, ends at Mon >> 2023-04-24 12:18:07 CEST. -- >> -- No entries -- > Debian's nftables package includes a systemd service to run nftables. You >

Re: is nft running? how do I get info?

2023-04-24 Thread Anssi Saari
Bonno Bloksma writes: > Hi, > > After years of using ipchains and later iptables as firewall I am now trying > to use nft. :-) > > I thought I understood it all and as far as I know I have a working config. > But just trying to get a listing of the running config shows NOTHING. >

Re: is nft running? how do I get info?

2023-04-24 Thread Dan Ritter
Bonno Bloksma wrote: > Hi, > > After years of using ipchains and later iptables as firewall I am now trying > to use nft. :-) > > I thought I understood it all and as far as I know I have a working config. > But just trying to get a listing of the running config shows NOTHING. >

is nft running? how do I get info?

2023-04-24 Thread Bonno Bloksma
Hi, After years of using ipchains and later iptables as firewall I am now trying to use nft. :-) I thought I understood it all and as far as I know I have a working config. But just trying to get a listing of the running config shows NOTHING. linbookwormtest:~# nft list ruleset