On Mon, Nov 26, 2018 at 03:49:36PM +0100, Michael Biebl wrote: > Hi Eric, > > I recently switched firewalld back to iptables given the feedback in > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=909574 > > This seems to have caused a regression. > Does this specific problem ring a bell?
No. As far as I can tell, firewalld never uses iptables -R (rule replace) option. It's possible this is being triggered by something external via the direct/passthrough interface (e.g. docker, libvirt). Setting InvividualCalls=yes in /etc/firewalld/firewalld.conf will be more verbose and help in debugging the cause. I also notice debian-testing is now using iptables-nft instead of iptables-legacy. We've been finding (and fixing!) a fair amount compatibility issues in iptables-nft - perhaps you've found another. _______________________________________________ Pkg-utopia-maintainers mailing list Pkg-utopia-maintainers@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-utopia-maintainers
