Hello!
I've a rich-rule: rule family="ipv4" source address="185.122.204.97" log reject type="icmp-admin-prohibited"
This results in nftables:
chain filter_IN_public_deny { ip saddr 185.122.204.97 reject with icmp admin-prohibited }
It does not include a logging prefix like here:
chain filter_FWD_public { jump filter_FORWARD_POLICIES_pre jump filter_FWD_public_pre jump filter_FWD_public_log jump filter_FWD_public_deny jump filter_FWD_public_allow jump filter_FWD_public_post jump filter_FORWARD_POLICIES_post log prefix "filter_FWD_public_REJECT: " reject with icmpx admin-prohibited }
Is that intended? How can I add it inside the rich-rule?
On 09.06.2024 22:53, Marco Moock wrote:
Hello!
I've a rich-rule: rule family="ipv4" source address="185.122.204.97" log reject type="icmp-admin-prohibited"
This results in nftables:
chain filter_IN_public_deny { ip saddr 185.122.204.97 reject with icmp admin-prohibited }
It does not include a logging prefix like here:
chain filter_FWD_public { jump filter_FORWARD_POLICIES_pre jump filter_FWD_public_pre jump filter_FWD_public_log jump filter_FWD_public_deny jump filter_FWD_public_allow jump filter_FWD_public_post jump filter_FORWARD_POLICIES_post log prefix "filter_FWD_public_REJECT: " reject with icmpx admin-prohibited }
Is that intended? How can I add it inside the rich-rule?
log prefix="..."
firewalld-users@lists.fedorahosted.org