You are not logged in.

Pages: 1

#1 2024-11-06 13:56:35

dalu
Member
Registered: 2014-04-16
Posts: 105

[solved] Kernel sysctl settings after update

I'm getting 

( 4/22) Applying kernel sysctl settings...
Couldn't write '1' to 'net/bridge/bridge-nf-call-iptables', ignoring: No such file or directory
Couldn't write '1' to 'net/bridge/bridge-nf-call-ip6tables', ignoring: No such file or directory

after an update and couldn't find anything about this via Google search.

I wonder what's going on and how to fix it.
nf tables are the "new" linux firewall

sudo lsmod|grep nf
nf_nat                 61440  2 ip6table_nat,iptable_nat
nf_conntrack          200704  1 nf_nat
nf_defrag_ipv6         24576  1 nf_conntrack
nf_defrag_ipv4         12288  1 nf_conntrack
nfnetlink              20480  1
libcrc32c              12288  4 nf_conntrack,nf_nat,xfs,raid456

my iface is part of a bridge, because libvirt/kvm and the inability to ssh into the guests with macvtap.
It is set up via Networkmanager.

so yeah "how fix"?

Last edited by dalu (2024-11-07 08:53:51)

Offline

#2 2024-11-06 15:14:02

seth
Member
From: Don't DM me only for attention
Registered: 2012-09-03
Posts: 71,642

Re: [solved] Kernel sysctl settings after update

modinfo br-netfilter

It's certainly not loaded atm.

How to upload text · How to boot w/o GUI · Disable Windows Fast-Start! · Fix your xinitrc

Online

#3 2024-11-07 08:28:36

dalu
Member
Registered: 2014-04-16
Posts: 105

Re: [solved] Kernel sysctl settings after update

Well I don't have any firewall running or configured or needed.
Should I just ignore this error message then?

The script doing that could add a check if this module is loaded and then set those values or not.

Who or what is to blame for this, how can I find out?

Offline

#4 2024-11-07 08:36:52

seth
Member
From: Don't DM me only for attention
Registered: 2012-09-03
Posts: 71,642

Re: [solved] Kernel sysctl settings after update

Who or what is to blame for this, how can I find out?

◉ pacman -Qo /usr/share/libalpm/hooks/30-systemd-sysctl.hook

=> systemd
https://man.archlinux.org/man/core/syst … ysctl.8.en
https://man.archlinux.org/man/sysctl.d.5.en

grep -ri bridge-nf-call-iptables /etc/sysctl.d/*.conf /run/sysctl.d/*.conf /usr/local/lib/sysctl.d/*.conf /usr/lib/sysctl.d/*.conf

How to upload text · How to boot w/o GUI · Disable Windows Fast-Start! · Fix your xinitrc

Online

#5 2024-11-07 08:53:35

dalu
Member
Registered: 2014-04-16
Posts: 105

Re: [solved] Kernel sysctl settings after update

Aaah, dumbo me.
I put

net.bridge.bridge-nf-call-iptables=1
net.bridge.bridge-nf-call-ip6tables=1

in /etc/sysctl.d/nftables.conf
because of k8s.

However, https://unix.stackexchange.com/question … -parameter

In fact, they are working on replacing it in kubernetes. See github.com/kubernetes/kubernetes/issues/62720 and github.com/kubernetes/enhancements/issues/3866 –
Adrian
Commented Dec 29, 2023 at 17:46

will add solved tag

Offline

Pages: 1

Board footer

Powered by FluxBB