[Pkg-utopia-maintainers] Bug#914694: Bug#914694: firewall-cmd --reload fails: RULE_REPLACE failed (No such file or directory): rule in chain {INPUT, OUTPUT}

Eric Garver eric at garver.life
Mon Nov 26 15:20:04 GMT 2018


On Mon, Nov 26, 2018 at 03:49:36PM +0100, Michael Biebl wrote:
> Hi Eric,
> 
> I recently switched firewalld back to iptables given the feedback in
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909574
> 
> This seems to have caused a regression.
> Does this specific problem ring a bell?

No. As far as I can tell, firewalld never uses iptables -R (rule
replace) option. It's possible this is being triggered by something
external via the direct/passthrough interface (e.g. docker, libvirt).

Setting InvividualCalls=yes in /etc/firewalld/firewalld.conf will be
more verbose and help in debugging the cause.

I also notice debian-testing is now using iptables-nft instead of
iptables-legacy. We've been finding (and fixing!) a fair amount
compatibility issues in iptables-nft - perhaps you've found another.



More information about the Pkg-utopia-maintainers mailing list