On Fri, Sep 18, 2020 at 11:55:40AM -0000, Jason Long wrote:
Thank you.
I added "--queue-bypass" at the end of each lines in "direct.xml"
file
and problem solved, but this parameter doesn't affect to my Firewalld
rules?
It does not affect firewalld's rules.
Everything working properly?
Depends. The implications are:
if FirewallBackend=iptables, then
- firewalld's rules are bypassed. packet immediately accepted.
if FirewallBackend=nftables, then
- packet still subject to firewalld's rules. It may be dropped
or accepted by firewalld.