[Bug 1201510] New: libvirt must make use of nftables instead of iptables (if not already) and also reflect this in BuildRequires
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
Bug ID: 1201510
Summary: libvirt must make use of nftables instead of iptables
(if not already) and also reflect this in
BuildRequires
Classification: openSUSE
Product: openSUSE Tumbleweed
Version: Current
Hardware: Other
OS: Other
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Virtualization:Tools
Assignee: virt-bugs@suse.de
Reporter: trenn@suse.com
QA Contact: qa-bugs@suse.de
Found By: ---
Blocker: ---
We want to drop iptables support for the future in favor of nftables.
firewalld already seem to make use of nftables and this has been fixed in
dependencies:
Thu Mar 3 14:26:57 UTC 2022 - Thorsten Kukuk
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
Thomas Renninger
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
James Fehlig
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
https://bugzilla.suse.com/show_bug.cgi?id=1201510#c1
--- Comment #1 from James Fehlig
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
https://bugzilla.suse.com/show_bug.cgi?id=1201510#c2
Santiago Zarate
![](https://seccdn.libravatar.org/avatar/a895f78a81a109471893519443e4d933.jpg?s=120&d=mm&r=g)
https://bugzilla.suse.com/show_bug.cgi?id=1201510
https://bugzilla.suse.com/show_bug.cgi?id=1201510#c3
--- Comment #3 from James Fehlig
iptables-backend-nft should help here.
I remember thinking about that while doing the investigation for comment #1. But now that I've looked closer, I'm not sure how it will help. libvirt currently 'BuildRequires' iptables, and the libvirt-daemon-driver-{network,nwfilter} subpackages 'Requires' iptables. I can substitute that for iptables-backend-nft, but I see iptables-backend-nft itself 'Requires' iptables. Or it's quite possible I'm missing how you envision iptables-backend-nft will help :-). -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com