<html>
    <head>
      <base href="https://bugzilla.netfilter.org/" />
    </head>
    <body><table border="1" cellspacing="0" cellpadding="8">
        <tr>
          <th>Bug ID</th>
          <td><a class="bz_bug_link 
          bz_status_NEW "
   title="NEW - Using kernel 4.18.10, nft commandline tool or nft -f can't parse negative priority values over -200."
   href="https://bugzilla.netfilter.org/show_bug.cgi?id=1281">1281</a>
          </td>
        </tr>

        <tr>
          <th>Summary</th>
          <td>Using kernel 4.18.10, nft commandline tool or nft -f can't parse negative priority values over -200.
          </td>
        </tr>

        <tr>
          <th>Product</th>
          <td>nftables
          </td>
        </tr>

        <tr>
          <th>Version</th>
          <td>unspecified
          </td>
        </tr>

        <tr>
          <th>Hardware</th>
          <td>x86_64
          </td>
        </tr>

        <tr>
          <th>OS</th>
          <td>Ubuntu
          </td>
        </tr>

        <tr>
          <th>Status</th>
          <td>NEW
          </td>
        </tr>

        <tr>
          <th>Severity</th>
          <td>critical
          </td>
        </tr>

        <tr>
          <th>Priority</th>
          <td>P5
          </td>
        </tr>

        <tr>
          <th>Component</th>
          <td>kernel
          </td>
        </tr>

        <tr>
          <th>Assignee</th>
          <td>pablo@netfilter.org
          </td>
        </tr>

        <tr>
          <th>Reporter</th>
          <td>seungheon_jang@tmax.co.kr
          </td>
        </tr></table>
      <p>
        <div>
        <pre>Hi. I'm using OS 'Ubuntu 18.04'. The kernel version is '4.18.10'.
And nft version is 'nftables v0.9.0 (Fearless Fosdick)'
I installed these packages.
libjansson4_2.11-1_amd64.deb
libnftnl7_1.1.1-1_amd64.deb
libnftables0_0..9.0-1_amd64.deb
nftables_0.9.0-1_amd64.deb
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I want to use nft -f command for enrolling rule.
This is my rule.
--------------------------------------------------------------------
table ip testbed_nat {
    chain preroutingnat_200 {
        type nat hook prerouting priority -300; policy accept;
    }
    chain postroutingnat_200 {
        type nat hook postrouting priority -300; policy accept;
    }
}
--------------------------------------------------------------------

But, the result of nft -f command is this.
~# nft -f rule
rule:4:15-31: Error: Could not process rule: Operation not supported
        chain preroutingnat_200 {
              ^^^^^^^^^^^^^^^^^
rule:10:15-32: Error: Could not process rule: Operation not supported
        chain postroutingnat_200 {
              ^^^^^^^^^^^^^^^^^^

I changed priority value -300 -> -199, it worked. But i changed value over
-200, it didn't work.
And I changed kernel version 4.18.10 to 4.15 or 4.13, then it worked.

I want to use nft in kernel that version is 4.18.10 

Please look into this issue.
Thanks.</pre>
        </div>
      </p>
      <hr>
      <span>You are receiving this mail because:</span>
      
      <ul>
          <li>You are watching all bug changes.</li>
      </ul>
    </body>
</html>