[pkg-netfilter-team] Bug#887716: Bug#887716: not necessarily not running
Arturo Borrero Gonzalez
arturo at debian.org
Fri Jan 19 12:22:32 UTC 2018
On 19 January 2018 at 11:46, 積丹尼 Dan Jacobson <jidanni at jidanni.org> wrote:
> Package: nftables
> Version: 0.8.1-1
> Severity: minor
>
> Setting up nftables (0.8.1-1) ...
> nftables.service is a disabled or a static unit not running, not starting it.
>
> Not completely correct. Yes it is disabled, but actually it is running.
>
> # nft list tables
> table ip firewall
> table ip6 firewall
>
> I start it via the same script that connects my ADSL modem.
>
> So you might want to change the words a little.
The systemd service is not running as is not started.
Different is that you added rules by other means (like the ADSL script
you mentioned), but that is outside of the control of systemd
i.e, there is no way for systemd to know if you added rules, since the
service is just a one-shot run of `nft -f [...]`.
Closing this bug now. Feel free to reopen if you would lie to further discuss.
More information about the pkg-netfilter-team
mailing list