Open deb75 opened 5 years ago
Hi,
I am getting stuck with this issue, googling part of the error message does not lead to any hints.
It seems that there had been some changes in iptables
packages which are not yet reflected in firejail
, but it is little out of scope for me for now.
I am happy with any help, I am pretty sure other people face this issue
Probably the new version of iptables is creating the problem.
Hi,
Thanks for coping with this issue, if you need me to test anything, please ask.
Regards
iptables-restore v1.8.1 (nf_tables)
Are you by chance using Debian?
Since 1.8.1 by default the nf_tables backend is used instead of the xtables backend.
See NEWS.Debian: https://sources.debian.org/src/iptables/1.8.1-2/debian/NEWS/
You can try switching to the legacy mode with the following command (assuming Debian):
update-alternatives --set iptables /usr/sbin/iptables-legacy
Hi
You guessed right and your hack makes firejail
work again.
Thanks :+1:
Thanks for confirmation. I'll keep it open and change to an "enchancement" bug for nf_tables support.
Thank you @reinerh update-alternatives --set iptables /usr/sbin/iptables-legacy worked for running nipe and anonsurf on WSL2 debian (kali linux)
Hello,
I run
firejail
ondebian buster
. After an upgrate I suddenly got this error :with the command
firejail --private --net=wlp1s0 firefox-esr
,wlp1s0
being my wifi card.I do not have any error with just :
firejail --private firefox-esr
.It seems to be an issue with
iptables
rules, but I am unable to understand, would you have nay hints ?Best regards