1 (edited by it-vts 2021-02-20 17:48:29)

Topic: Unable to initialize Netlink socket: Protocol not supported in nft

Hello everyone.  Something strange with my nftables filter after ajenti install.
I deleted ajenti, but the error still remains!

Then i type the command "nft" then I get the error:

Unable to initialize Netlink socket: Protocol not supported

service nftables status:

● nftables.service - nftables
   Loaded: loaded (/lib/systemd/system/nftables.service; enabled; vendor preset: enabled)
   Active: failed (Result: exit-code) since Sat 2021-02-20 11:47:28 MSK; 22min ago
     Docs: man:nft(8)
           http://wiki.nftables.org
  Process: 179 ExecStart=/usr/sbin/nft -f /etc/nftables.conf (code=exited, status=3)
Main PID: 179 (code=exited, status=3)

mx nft[179]: netlink.c:62: Unable to initialize Netlink socket: Protocol not supported
mx systemd[1]: nftables.service: Main process exited, code=exited, status=3/NOTIMPLEMENTED
mx systemd[1]: nftables.service: Failed with result 'exit-code'.
mx systemd[1]: Failed to start nftables.
Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable.

--------------------------------------------------------------------------------------------------------------------------

journalctl -xe | grep nft
mx systemd[1]: Starting nftables...
-- Subject: Unit launch starts nftables.service
-- The process of starting the unit has begun nftables.service.
mx nft[3240]: netlink.c:62: Unable to initialize Netlink socket: Protocol not supported
mx systemd[1]: nftables.service: Main process exited, code=exited, status=3/NOTIMPLEMENTED
-- An ExecStart= process belonging to unit nftables.service has exited.
mx systemd[1]: nftables.service: Failed with result 'exit-code'.
-- The unit nftables.service has entered the 'failed' state with result 'exit-code'.
mx systemd[1]: Failed to start nftables.
-- Subject: Unit error nftables.service
-- Unit crashed nftables.service.

---------------------------------------------------------------------------------------------------------------------------

ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host
       valid_lft forever preferred_lft forever
2: enp0s3: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
    link/ether 08:00:27:a3:85:aa brd ff:ff:ff:ff:ff:ff
    inet 192.168.0.10/24 brd 192.168.0.255 scope global enp0s3
       valid_lft forever preferred_lft forever
    inet6 fe80::a00:27ff:fea3:85aa/64 scope link
       valid_lft forever preferred_lft forever

Please HELP!!!?

- iRedMail version (1.3.1 MARIADB edition.):
- Downloadable installer!
- Linux mx 4.19.0-10-amd64 #1 SMP Debian 4.19.132-1 (2020-07-24) x86_64 GNU/Linux
- MySQL

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2

Re: Unable to initialize Netlink socket: Protocol not supported in nft

You'd better check /etc/nftables.conf to figure out which lines were added by ajenti, and remove or disable them for testing.

3

Re: Unable to initialize Netlink socket: Protocol not supported in nft

ZhangHuangbin wrote:

You'd better check /etc/nftables.conf to figure out which lines were added by ajenti, and remove or disable them for testing.

No, nftables.conf is corect! agenti uses iptables but it is removed just like agenti!
It's something with Netlink or linux kernel, but I'm not an expert...