nftables is not accepting rules from ufw

Brian Vaughan Thu, 05 Dec 2019 19:16:29 -0800

I saw today that ufw.service was failing on boot. From the errormessages I get when executing 'ufw enable' (see below), it looks likenftables is not accepting the format of the rules from ufw. I've alsotried 'ufw reset', but that didn't change the behavior.

I'm using ufw-0.36-1 and nftables-0.9.3-1. By the changelogs, ufw waslast updated a year ago, but nftables was updated on December 3, 2019.I'm not completely sure which package I should file a bug against.


-----

# ufw enable

ERROR: problem running ufw-init
Bad argument `DROP'
Error occurred at line: 4
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Bad argument `-'
Error occurred at line: 4
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
iptables-restore: line 2 failed
Bad argument `-'
Error occurred at line: 3
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Bad argument `-'
Error occurred at line: 3
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Bad argument `-'
Error occurred at line: 3
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Bad argument `-'
Error occurred at line: 3
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
iptables-restore v1.8.4 (nf_tables): Chain 'ufw-user-input' does not exist
Error occurred at line: 2
Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Bad argument `DROP'
Error occurred at line: 4