From 1e0d4d90e55707b3ad29dfec91f43c4f99efc889 Mon Sep 17 00:00:00 2001 From: awy Date: Sat, 3 Aug 2024 03:40:06 +0300 Subject: nftables libvirt network not working fix --- .config | 24 ++++++++++++++++-------- 1 file changed, 16 insertions(+), 8 deletions(-) diff --git a/.config b/.config index b767eab..9d99159 100644 --- a/.config +++ b/.config @@ -1050,18 +1050,19 @@ CONFIG_NF_NAT=y CONFIG_NF_NAT_MASQUERADE=y CONFIG_NF_TABLES=y CONFIG_NF_TABLES_INET=y -# CONFIG_NF_TABLES_NETDEV is not set +CONFIG_NF_TABLES_NETDEV=y # CONFIG_NFT_NUMGEN is not set CONFIG_NFT_CT=y # CONFIG_NFT_CONNLIMIT is not set -# CONFIG_NFT_LOG is not set -# CONFIG_NFT_LIMIT is not set -# CONFIG_NFT_MASQ is not set +CONFIG_NFT_LOG=y +CONFIG_NFT_LIMIT=y +CONFIG_NFT_MASQ=y # CONFIG_NFT_REDIR is not set -# CONFIG_NFT_NAT is not set +CONFIG_NFT_NAT=y # CONFIG_NFT_TUNNEL is not set # CONFIG_NFT_QUOTA is not set -# CONFIG_NFT_REJECT is not set +CONFIG_NFT_REJECT=y +CONFIG_NFT_REJECT_INET=y CONFIG_NFT_COMPAT=y # CONFIG_NFT_HASH is not set CONFIG_NFT_FIB=y @@ -1070,6 +1071,11 @@ CONFIG_NFT_FIB=y # CONFIG_NFT_OSF is not set # CONFIG_NFT_TPROXY is not set # CONFIG_NFT_SYNPROXY is not set +# CONFIG_NF_DUP_NETDEV is not set +# CONFIG_NFT_DUP_NETDEV is not set +# CONFIG_NFT_FWD_NETDEV is not set +# CONFIG_NFT_FIB_NETDEV is not set +# CONFIG_NFT_REJECT_NETDEV is not set CONFIG_NETFILTER_XTABLES=y # @@ -1165,6 +1171,7 @@ CONFIG_IP_NF_IPTABLES_LEGACY=y # CONFIG_NF_SOCKET_IPV4 is not set # CONFIG_NF_TPROXY_IPV4 is not set CONFIG_NF_TABLES_IPV4=y +CONFIG_NFT_REJECT_IPV4=y # CONFIG_NFT_DUP_IPV4 is not set CONFIG_NFT_FIB_IPV4=y # CONFIG_NF_TABLES_ARP is not set @@ -1181,7 +1188,7 @@ CONFIG_IP_NF_FILTER=y CONFIG_IP_NF_TARGET_REJECT=y # CONFIG_IP_NF_TARGET_SYNPROXY is not set CONFIG_IP_NF_NAT=y -# CONFIG_IP_NF_TARGET_MASQUERADE is not set +CONFIG_IP_NF_TARGET_MASQUERADE=y # CONFIG_IP_NF_TARGET_NETMAP is not set # CONFIG_IP_NF_TARGET_REDIRECT is not set CONFIG_IP_NF_MANGLE=y @@ -1198,10 +1205,11 @@ CONFIG_IP6_NF_IPTABLES_LEGACY=y # CONFIG_NF_SOCKET_IPV6 is not set # CONFIG_NF_TPROXY_IPV6 is not set CONFIG_NF_TABLES_IPV6=y +CONFIG_NFT_REJECT_IPV6=y # CONFIG_NFT_DUP_IPV6 is not set CONFIG_NFT_FIB_IPV6=y # CONFIG_NF_DUP_IPV6 is not set -# CONFIG_NF_REJECT_IPV6 is not set +CONFIG_NF_REJECT_IPV6=y # CONFIG_NF_LOG_IPV6 is not set CONFIG_IP6_NF_IPTABLES=y # CONFIG_IP6_NF_MATCH_AH is not set -- cgit v1.2.3