Using nftables instead of iptables

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
dj.dule
Posts: 3
Joined: Fri Jan 13, 2017 4:15 pm

Using nftables instead of iptables

Post by dj.dule » Fri Jan 13, 2017 4:18 pm

Hi,

I noticed that when I start vpnserver there are following iptables rules added:

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DROP icmp -- !127.164.127.124 !127.202.195.175 icmp port-unreachable connmark match ! 0x43c51593
DROP tcp -- !127.129.212.46 !127.107.205.206 tcp spts:61001:65535 flags:RST/RST connmark match ! 0x79a30f60

and it seems to me if I remove them vpnserver stops working. How I can use nftables instead of iptables ?

Thanks...
Top
thisjun
Posts: 2458
Joined: Mon Feb 24, 2014 11:03 am

Re: Using nftables instead of iptables

Post by thisjun » Thu Feb 02, 2017 6:16 am

Please try to disable RawIP mode SecureNAT.
Top
Post Reply

Return to “SoftEther VPN General Discussion”