On 2018-05-21 23:31:57 (-0400), Bill Sun via arch-general wrote:
I just updated one of my computer to 4.16.9. After update, the following nft commands will not work: nft add table ip nat <--- this one works without error nft add chain ip nat prerouting { type nat hook prerouting priority 0 \; } ^ This will give me the following error message: Could not process rule: Device or resource busy.
However, the default simple firewall still works. I have another computer that is still on 4.16.8, and the example above works; further, switching back to a lts kernel (4.14.41) also works. Hmm, that's odd. I'm on linux-hardened 4.16.9 atm and my nftables configuration has a `policy accept;` for said chain, which is working. Does only the nft command fail, or does it work, when it's in a configuration file?
Best, David -- https://sleepmap.de