@jow- please tell if formatting should be this or cryptic readback from nft l r .. reject icmp enters stack via icmp_send, subject to routes and (permitted) output, thus 'drop' activity can be one line down, though i find no reason for it to send on wrong iface. Test: try to isolate network forwarding with reject. Misfeature dates back to iptables reject target incepticon. i know tests due, will adjust on feedback.
S-o-b: A P <n...m>
@jow- please tell if formatting should be this or cryptic readback from nft l r .. reject icmp enters stack via icmp_send, subject to routes and (permitted) output, thus 'drop' activity can be one line down, though i find no reason for it to send on wrong iface. Test: try to isolate network forwarding with reject. Misfeature dates back to iptables reject target incepticon. i know tests due, will adjust on feedback. S-o-b: A P <n...m>