I have a 4 xml ipsets in CentOS 7, which contain a total of 71000 addresses. These 4 sets are blocked via my drop zone. This works great in CentOS 7 but seems to cause significant problems under CentOS 8.
If I try to load the same 4 sets in CentOS 8 (8.2.2004), firewalld dies with a bunch of errors that don't help me much:
systemctl:
Code: Select all
● firewalld.service loaded failed failed firewalld - dynamic firewall daemon
Code: Select all
systemd[1]: firewalld.service: Main process exited, code=exited, status=2/INVALIDARGUMENT
systemd[1]: firewalld.service: Failed with result 'exit-code'.
Code: Select all
ERROR: 'python-nftables' failed: internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
internal:0:0-0: Error: No such file or directory
What is interesting, as I already mentioned, is that CentOS 7 has no problem whatsoever, I've been loading these addresses in firewalld for years now.
Anyone else has experienced a similar issue with firewalld?
Thanks.