<html>

    <head>

      <base href="https://bugzilla.netfilter.org/" />

    </head>

    <body><table border="1" cellspacing="0" cellpadding="8">

        <tr>

          <th>Bug ID</th>

          <td><a class="bz_bug_link 

          bz_status_NEW "

   title="NEW - Using kernel 4.18.10, nft commandline tool or nft -f can't parse negative priority values over -200."

   href="https://bugzilla.netfilter.org/show_bug.cgi?id=1281">1281</a>

          </td>

        </tr>

        <tr>

          <th>Summary</th>

          <td>Using kernel 4.18.10, nft commandline tool or nft -f can't parse negative priority values over -200.

          </td>

        </tr>

        <tr>

          <th>Product</th>

          <td>nftables

          </td>

        </tr>

        <tr>

          <th>Version</th>

          <td>unspecified

          </td>

        </tr>

        <tr>

          <th>Hardware</th>

          <td>x86_64

          </td>

        </tr>

        <tr>

          <th>OS</th>

          <td>Ubuntu

          </td>

        </tr>

        <tr>

          <th>Status</th>

          <td>NEW

          </td>

        </tr>

        <tr>

          <th>Severity</th>

          <td>critical

          </td>

        </tr>

        <tr>

          <th>Priority</th>

          <td>P5

          </td>

        </tr>

        <tr>

          <th>Component</th>

          <td>kernel

          </td>

        </tr>

        <tr>

          <th>Assignee</th>

          <td>pablo@netfilter.org

          </td>

        </tr>

        <tr>

          <th>Reporter</th>

          <td>seungheon_jang@tmax.co.kr

          </td>

        </tr></table>

      <p>

        <div>

        <pre>Hi. I'm using OS 'Ubuntu 18.04'. The kernel version is '4.18.10'.

And nft version is 'nftables v0.9.0 (Fearless Fosdick)'

I installed these packages.

libjansson4_2.11-1_amd64.deb

libnftnl7_1.1.1-1_amd64.deb

libnftables0_0..9.0-1_amd64.deb

nftables_0.9.0-1_amd64.deb

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I want to use nft -f command for enrolling rule.

This is my rule.

--------------------------------------------------------------------

table ip testbed_nat {

    chain preroutingnat_200 {

        type nat hook prerouting priority -300; policy accept;

    }

    chain postroutingnat_200 {

        type nat hook postrouting priority -300; policy accept;

    }

}

--------------------------------------------------------------------

But, the result of nft -f command is this.

~# nft -f rule

rule:4:15-31: Error: Could not process rule: Operation not supported

        chain preroutingnat_200 {

              ^^^^^^^^^^^^^^^^^

rule:10:15-32: Error: Could not process rule: Operation not supported

        chain postroutingnat_200 {

              ^^^^^^^^^^^^^^^^^^

I changed priority value -300 -> -199, it worked. But i changed value over

-200, it didn't work.

And I changed kernel version 4.18.10 to 4.15 or 4.13, then it worked.

I want to use nft in kernel that version is 4.18.10 

Please look into this issue.

Thanks.</pre>

        </div>

      </p>

      <hr>

      <span>You are receiving this mail because:</span>

      <ul>

          <li>You are watching all bug changes.</li>

      </ul>

    </body>

</html>