Ah, that's good to know and we should definitely aim at refreshing nftables prior to doing any amount of testing on the wrappers.
The failure I've seen for LXD specifically was around complex protocol parsing (IPv6 router advertisements I believe) through ebtables, so not a very usual thing to do, but something LXD needs to do to prevent some cases of IP spoofing between containers with isolated networking. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1843468 Title: nftables based iptables wrapper break userspace To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/iptables/+bug/1843468/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
