On 2024-01-12, Ralph Aichinger wrote: > If I insert the following rule at the bottom, everything starts to > work: > > meta l4proto udp accept
Add log to see what would be dropped: meta l4proto udp log level info prefix "udp" accept Provide "nft list ruleset" to better see what nft understands. I suppose your udp is not "established" to not be accepted. Perhaps something in your nat that breaks "established" ?
