Open Talisker69 opened 1 year ago
Hi alls, Thanks for your script. By running these options #./nft-geo-filter --log-drop --allow --allow-established FR i have the following errors. And of course like it can't add private network exception I loose my connection.
ERROR - add_allow_rules - Failed to add the rule to allow private IPv4 address ranges in geo-filter's filter-chain ERROR - show_subprocess_run_error - Failed to run: (-6, ['/usr/sbin/nft', 'insert', 'rule', 'inet', 'geo-filter', 'filter-chain', 'ip', 'saddr', '{', '10.0.0.0/8,', '127.0.0.0/8,', '172.16.0.0/12,', '192.168.0.0/16', '}', 'accept']) ERROR - show_subprocess_run_error - Command exit status: -6 ERROR - show_subprocess_run_error - Command stdout: ERROR - show_subprocess_run_error - Command stderr: BUG: unhandled op 4 nft: evaluate.c:1502: interval_set_eval: Assertion `0' failed.
Hi alls, Thanks for your script. By running these options #./nft-geo-filter --log-drop --allow --allow-established FR i have the following errors. And of course like it can't add private network exception I loose my connection.
./nft-geo-filter --log-drop --allow --allow-established FR
ERROR - add_allow_rules - Failed to add the rule to allow private IPv4 address ranges in geo-filter's filter-chain ERROR - show_subprocess_run_error - Failed to run: (-6, ['/usr/sbin/nft', 'insert', 'rule', 'inet', 'geo-filter', 'filter-chain', 'ip', 'saddr', '{', '10.0.0.0/8,', '127.0.0.0/8,', '172.16.0.0/12,', '192.168.0.0/16', '}', 'accept']) ERROR - show_subprocess_run_error - Command exit status: -6 ERROR - show_subprocess_run_error - Command stdout: ERROR - show_subprocess_run_error - Command stderr: BUG: unhandled op 4 nft: evaluate.c:1502: interval_set_eval: Assertion `0' failed.