For what it’s worth, I also noticed that CONFIG_NFT_CONNLIMIT and CONFIG_NFT_SOCKET are also not enabled. I suspect they should be in order for things to work as expected, but I haven’t dug deeply enough to know for sure.
]]>regards,
deep42thought
I'm using ArchLinux32 on my gateway router/firewall appliance at home. I'm using nftables to manage my netfilter rules, and it appears there were changes to the Kernel configuration as of 4.18.6.arch1-1.0 that broke nftables in some pretty significant ways. Namely, one can see in the config.i686 file that CONFIG_NF_TABLES_SET is not set (see line 1124). I believe this means that any curly-brace set syntax will break in nftables.conf, and indeed that's what I'm seeing.
I was able to downgrade to the 4.17 kernel series, but obviously that's not an ideal long-term solution. So I guess my question is: short of filing a bug report (which I can't do), how do I go about notifying the correct folks so this is addressed?
]]>