kinggeek.co.uk
  • You are here:  
  • Home
  • Tech Notes
  • iptables v1.8.7 (nf_tables): table nat is incompatible, use nft tool. libvirtd
Thursday, 16 June 2022 15:17

iptables v1.8.7 (nf_tables): table nat is incompatible, use nft tool. libvirtd

Virtual network won't start because iptables-nf complains about nat table being incompatible.

Change your nftables.conf (or whatever) rules to call the table something other than 'nat' i.e. VM_RULES or something.

Certainly an issue I ran into on Debian 11.

Also (I was forwarding from public IPs to VMs) I needed to start nftables AGAIN AFTER libvirtd has messed about. 

Actually the proper way to do any of this might be with /etc/libvirt/hooks/network and then load a set of specific nftables rules that way like:-

/etc/libvirt/hooks/network

#!/bin/bash
if [ "$2" = "started" ]; then
/usr/sbin/nft -f /etc/nftables-VM-forwards.conf
fi

 

 

 

 

Last modified on Thursday, 16 June 2022 16:30
More in this category: « Waves Central 13 on Windows 7 Remotely emergency (force) reboot linux via FTP when SSH has failed »

Leave a comment

Make sure you enter all the required information, indicated by an asterisk (*). HTML code is not allowed.

back to top

Back to top

© kinggeek.co.uk 2024