[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

iptables support for Debian 11 PV domu's

I'm working on upgrading my Xen environments from Debian 10 to 11. Today I tried one of my dom0's and that seemed to go fine, so I tried a couple of domu's. That didn't go quite so well; when they started up the networking wouldn't start.

Doing some checks, the error message was that it was in the pre-up scripts, which I've only got one thing - restoring the iptables rulesets.

Trying to do a generic iptables -V gives the generic message

iptables/1.8.7 Failed to initialize nft: Protocol not supported

I ran the same command on the dom0 and it worked correctly.

I'm restoring my domu snapshots to revert them back to Debian 10, but was curious - is there a way to get the regular iptables-nft stuff to work in a Debian 11 pv domu, or do I need to start migrating over all of my firewall rules (hundreds of them, with some really complex stuff set up that I'm not ready to have break and try to fix...) before I can upgrade my VMs?

Chris

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.