I've got my direct rules, converted from a C6 iptables-save. I load them - they're to add to the built-in FORWARD chain. They all seem to load... but then, when I try to --reload, I get Error: BUILTIN_CHAIN: chain 'FORWARD' is built-in chain
and firewall-cmd --direct --get-all-rules returns nothing. A sample command in my script is firewall-cmd --permanent --direct --add-rule ipv4 filter FORWARD 1 -m state --state RELATED,ESTABLISHED -j ACCEPT
So, what am I doing wrong:
mark