Seeing similar issues in kernel versions linux-image-5.15.0-127-generic and linux-image-5.15.0-128-generic.
level=warning msg="Failed to install iptables rules" error="cannot install static proxy rules: unable to run 'ip6tables -t mangle -A CILIUM_PRE_mangle -m socket --transparent -m mark ! --mark 0x00000e00/0x00000f00 -m mark ! --mark 0x00000800/0x00000f00 -m comment --comment cilium: any->pod redirect proxied traffic to host proxy -j MARK --set-mark 0x00000200' iptables command: exit status 4 stderr=\"Warning: Extension MARK revision 0 not supported, missing kernel module?\\nip6tables v1.8.8 (nf_tables): RULE_APPEND failed (No such file or directory): rule in chain CILIUM_PRE_mangle\\n\"" subsys=iptables -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux-meta in Ubuntu. https://bugs.launchpad.net/bugs/2091960 Title: iptables bug Status in linux-meta package in Ubuntu: New Status in linux-meta-oracle-5.15 package in Ubuntu: Confirmed Bug description: have error in tailscale after updated to : - adding [-i tailscale0 -j MARK --set-mark 0x40000/0xff0000] in v6/filter/ts-forward: running [/usr/sbin/ip6tables -t filter -A ts- forward -i tailscale0 -j MARK --set-mark 0x40000/0xff0000 --wait]: exit status 2: ip6tables v1.8.4 (legacy): unknown option "--set-mark" Seems related : https://bugzilla.redhat.com/show_bug.cgi?id=2321325 https://github.com/tailscale/tailscale/issues/13863 Fixed by : https://github.com/torvalds/linux/commit/306ed1728e8438caed30332e1ab46b28c25fe3d8 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux-meta/+bug/2091960/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
