I try to understand how it works and got some strange result. Current host is 10.10.1.1, some host in network 10.10.1.2, i have next rule:if i remove myself (10.10.1.1) it stop to work, even if i will use oifname "ens54" it doesnt work too. Why i need allow outgoing traffic to myself? What ifname is it use?
ether type arp log prefix "NFTA: ARP_OUT: " flags all
+
journalctl -f -k
shows only packets with 10.10.1.2
I totally dont understand what happening... Help pls...
Code:
table arp arp_filter{ chain input { type filter hook input priority 0; policy drop; oifname "ens54" arp daddr ip 10.10.1.2 accept arp daddr ip 10.10.1.1 accept }}ether type arp log prefix "NFTA: ARP_OUT: " flags all
+
journalctl -f -k
shows only packets with 10.10.1.2
I totally dont understand what happening... Help pls...
Statistics: Posted by Kov — 2026-01-01 09:06