Script Error on Fedora 37 with SELinux #34
Description
Hi alls,
Thanks for your script.
By running these options #./nft-geo-filter --log-drop --allow --allow-established FR i have the following errors. And of course like it can't add private network exception I loose my connection.
#./nft-geo-filter --log-drop --allow --allow-established FR
ERROR - add_allow_rules - Failed to add the rule to allow private IPv4 address ranges in geo-filter's filter-chain
ERROR - show_subprocess_run_error - Failed to run: (-6, ['/usr/sbin/nft', 'insert', 'rule', 'inet', 'geo-filter', 'filter-chain', 'ip', 'saddr', '{', '10.0.0.0/8,', '127.0.0.0/8,', '172.16.0.0/12,', '192.168.0.0/16', '}', 'accept'])
ERROR - show_subprocess_run_error - Command exit status: -6
ERROR - show_subprocess_run_error - Command stdout:
ERROR - show_subprocess_run_error - Command stderr:
BUG: unhandled op 4
nft: evaluate.c:1502: interval_set_eval: Assertion `0' failed.