Bug 2042477 - Firewall failed to restart on Centos 8 [NEEDINFO]
Summary: Firewall failed to restart on Centos 8
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 8
Classification: Red Hat
Component: firewalld
Version: 8.0
Hardware: Unspecified
OS: Unspecified
unspecified
medium
Target Milestone: rc
: ---
Assignee: Eric Garver
QA Contact: qe-baseos-daemons
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2022-01-19 15:21 UTC by ticino2013
Modified: 2023-07-19 07:28 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2023-07-19 07:28:15 UTC
Type: Bug
Target Upstream Version:
Embargoed:
egarver: needinfo?

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHELPLAN-108732 0 None None None 2022-02-28 12:36:34 UTC

Description ticino2013 2022-01-19 15:21:05 UTC 
Hi, if I run the command: systemctl status firewalld

I get these errors:

gen 17 18:45:56 vpsalex firewalld[189]: ERROR: 'python-nftables' failed: intern>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 17 18:45:56 vpsalex firewalld[189]: ERROR: COMMAND_FAILED: 'python-nftables>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 17 18:47:08 vpsalex firewalld[189]: WARNING: AllowZoneDrifting is enabled. >
gen 17 18:47:19 vpsalex firewalld[189]: ERROR: 'python-nftables' failed: intern>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 17 18:47:25 vpsalex firewalld[189]: ERROR: 'python-nftables' failed: intern>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 17 18:47:25 vpsalex firewalld[189]: ERROR: COMMAND_FAILED: 'python-nftables>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 19 13:23:11 vpsalex firewalld[189]: WARNING: AllowZoneDrifting is enabled. >
gen 19 13:23:22 vpsalex firewalld[189]: ERROR: 'python-nftables' failed: intern>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 19 13:23:28 vpsalex firewalld[189]: ERROR: 'python-nftables' failed: intern>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>
gen 19 13:23:28 vpsalex firewalld[189]: ERROR: COMMAND_FAILED: 'python-nftables>


                                        JSON blob:
                                        {"nftables": [{"metainfo": {"json_schem>



How can I fix it?
Comment 1 Eric Garver 2022-01-19 15:58:44 UTC 
Hi. The errors are truncated, but it looks like the rules fail to apply in the nftables backend. This often results from invalid configuration.

What firewalld version are you using? `dnf info firewalld`

To investigate further:

  1. set IndividiualCalls=yes it /etc/firewalld/firewalld.conf

  2. check for new errors in /var/log/firewalld
    # truncate -s0 /var/log/firewalld
    # systemctl restart firewalld
    # grep ERROR /var/log/firewalld
Comment 3 RHEL Program Management 2023-07-19 07:28:15 UTC 
After evaluating this issue, there are no plans to address it further or fix it in an upcoming release.  Therefore, it is being closed.  If plans change such that this issue will be fixed in an upcoming release, then the bug can be reopened.
Note You need to log in before you can comment on or make changes to this bug.