Enable full feature nftables from linux virt
Package Information
- Package name: linux-virt
- Package version: 6.6.21-r0
- Alpine version: 3.19.1
- Alpine architecture: any
Summary
nftables is not enabled any features from the kernel package
Steps to reproduce
localhost:~$ cat /boot/config-virt|grep NFT
CONFIG_NFT_NUMGEN=m
CONFIG_NFT_CT=m
CONFIG_NFT_FLOW_OFFLOAD=m
CONFIG_NFT_CONNLIMIT=m
CONFIG_NFT_LOG=m
CONFIG_NFT_LIMIT=m
CONFIG_NFT_MASQ=m
CONFIG_NFT_REDIR=m
CONFIG_NFT_NAT=m
CONFIG_NFT_TUNNEL=m
CONFIG_NFT_QUEUE=m
CONFIG_NFT_QUOTA=m
CONFIG_NFT_REJECT=m
CONFIG_NFT_REJECT_INET=m
CONFIG_NFT_COMPAT=m
CONFIG_NFT_HASH=m
CONFIG_NFT_FIB=m
CONFIG_NFT_FIB_INET=m
# CONFIG_NFT_XFRM is not set
CONFIG_NFT_SOCKET=m
CONFIG_NFT_OSF=m
CONFIG_NFT_TPROXY=m
# CONFIG_NFT_SYNPROXY is not set
CONFIG_NFT_DUP_NETDEV=m
CONFIG_NFT_FWD_NETDEV=m
CONFIG_NFT_FIB_NETDEV=m
# CONFIG_NFT_REJECT_NETDEV is not set
CONFIG_NFT_REJECT_IPV4=m
CONFIG_NFT_DUP_IPV4=m
CONFIG_NFT_FIB_IPV4=m
CONFIG_NFT_REJECT_IPV6=m
CONFIG_NFT_DUP_IPV6=m
CONFIG_NFT_FIB_IPV6=m
# CONFIG_NFT_BRIDGE_META is not set
CONFIG_NFT_BRIDGE_REJECT=m
localhost:~$ sudo nft -f /tmp/test.nft
/tmp/test.nft:7:3-9: Error: Could not process rule: Not supported
ibrname "bridge0" goto bridge0-pre
^
test rules:
localhost:~$ cat /tmp/test.nft
flush ruleset
table bridge system {
chain bridge0 {
type filter hook prerouting priority 100;
ibrname "bridge0" goto bridge0-pre
}
chain bridge0-pre {}
}