What type of hardware are you using: VPS bought online What YunoHost version are you running: 12.1.39 How are you able to access your server: The webadmin
SSH Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: No
Describe your issue
Nftables is not running. Itβs possibly been broken for a long time, i only just found outβ¦ I think since last upgrade two months ago.
When i try to start the service, i have the following error message :
Erreur: "500"
Action: "PUT" /yunohost/api/services/nftables/start
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 nft[3916833]: In file included from /etc/nftables.conf:20:1-33:
avril 12 21:28:21 nft[3916833]: /etc/nftables.d/yunohost-firewall.conf:18:52-74: Error: Could not process rule: No such file or directory
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 nft[3916833]: In file included from /etc/nftables.conf:20:1-33:
avril 12 21:28:21 nft[3916833]: /etc/nftables.d/yunohost-firewall.conf:18:9-139: Error: Could not process rule: No such file or directory
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 nft[3916833]: In file included from /etc/nftables.conf:20:1-33:
avril 12 21:28:21 nft[3916833]: /etc/nftables.d/yunohost-firewall.conf:19:51-111: Error: Could not process rule: Operation not supported
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 nft[3916833]: In file included from /etc/nftables.conf:20:1-33:
avril 12 21:28:21 nft[3916833]: /etc/nftables.d/yunohost-firewall.conf:19:51-111: Error: Could not process rule: No such file or directory
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 nft[3916833]: In file included from /etc/nftables.conf:20:1-33:
avril 12 21:28:21 nft[3916833]: /etc/nftables.d/yunohost-firewall.conf:19:9-176: Error: Could not process rule: No such file or directory
avril 12 21:28:21 nft[3916833]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port mapping reply"
avril 12 21:28:21 nft[3916833]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
avril 12 21:28:21 systemd[1]: nftables.service: Main process exited, code=exited, status=1/FAILURE
avril 12 21:28:21 systemd[1]: nftables.service: Failed with result 'exit-code'.
avril 12 21:28:21 systemd[1]: Failed to start nftables.service - nftables.
Since the error comes from the /etc/nftables.d/yunohost-firewall.conf file, i tried to re-generate it with the webadmin GUI for the Firewall (basically i just toggled a port open) and this task failed too.
The logs for this action can we found here : https://paste.yunohost.org/raw/uzumexocep
The system is up to date and i did not temper with nftables, so i have no idea what went wrong⦠I did restart the server just in case, but no help. Any idea ?
Hello, thank you for your help ! Here are the logs :
root@yuno:~# systemctl status nftables.service
Γ nftables.service - nftables
Loaded: loaded (/lib/systemd/system/nftables.service; enabled; preset: enabled)
Drop-In: /etc/systemd/system/nftables.service.d
ββyunohost-nftables-hooks.conf
Active: failed (Result: exit-code) since Sun 2026-04-12 21:54:15 UTC; 17h ago
Docs: man:nft(8)
http://wiki.nftables.org
Process: 562 ExecStartPre=/usr/share/yunohost/yunohost-nftables-hooks pre (code=exited, status=0/SUCCESS)
Process: 588 ExecStart=/usr/sbin/nft -f /etc/nftables.conf (code=exited, status=1/FAILURE)
Main PID: 588 (code=exited, status=1/FAILURE)
CPU: 117ms
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:19:51-111: Error: Could not proce>
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^>
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:19:9-176: Error: Could not proces>
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^>
Apr 12 21:54:15 yuno.ondin.es systemd[1]: nftables.service: Main process exited, code=exited, status=1/FAILURE
Apr 12 21:54:15 yuno.ondin.es systemd[1]: nftables.service: Failed with result 'exit-code'.
Apr 12 21:54:15 yuno.ondin.es systemd[1]: Failed to start nftables.service - nftables.
lines 1-22/22 (END)
And :
root@yuno:~# journalctl -xeu nftables.service
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:15:9-43: Error: Could not process rule: No such file or directory
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp dport $udp_ports counter accept;
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:18:52-74: Error: Could not process rule: Operation not supported
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:18:52-74: Error: Could not process rule: No such file or directory
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:18:9-139: Error: Could not process rule: No such file or directory
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip6 saddr { fd00::/8, fe80::/10 } meta pkttype unicast limit rate 4/second burst 20 packets accept comment "Accept UPnP IGD port>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:19:51-111: Error: Could not process rule: Operation not supported
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:19:51-111: Error: Could not process rule: No such file or directory
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Apr 12 21:54:15 yuno.ondin.es nft[588]: In file included from /etc/nftables.conf:20:1-33:
Apr 12 21:54:15 yuno.ondin.es nft[588]: /etc/nftables.d/yunohost-firewall.conf:19:9-176: Error: Could not process rule: No such file or directory
Apr 12 21:54:15 yuno.ondin.es nft[588]: udp sport 1900 udp dport >= 1024 ip saddr { 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 169.254.0.0/16 } meta pkttype unicast limit rate 4/second burst 20 packets>
Apr 12 21:54:15 yuno.ondin.es nft[588]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^>
Apr 12 21:54:15 yuno.ondin.es systemd[1]: nftables.service: Main process exited, code=exited, status=1/FAILURE
ββ Subject: Unit process exited
ββ Defined-By: systemd
ββ Support: https://www.debian.org/support
ββ
ββ An ExecStart= process belonging to unit nftables.service has exited.
ββ
ββ The process' exit code is 'exited' and its exit status is 1.
Apr 12 21:54:15 yuno.ondin.es systemd[1]: nftables.service: Failed with result 'exit-code'.
ββ Subject: Unit failed
ββ Defined-By: systemd
ββ Support: https://www.debian.org/support
ββ
ββ The unit nftables.service has entered the 'failed' state with result 'exit-code'.
Apr 12 21:54:15 yuno.ondin.es systemd[1]: Failed to start nftables.service - nftables.
ββ Subject: A start job for unit nftables.service has failed
ββ Defined-By: systemd
ββ Support: https://www.debian.org/support
ββ
ββ A start job for unit nftables.service has finished with a failure.
ββ
ββ The job identifier is 271 and the job result is failed.
lines 99-148/148 (END)
Finally :
root@yuno:~# systemctl reload nftables
nftables.service is not active, cannot reload.
root@yuno:~# systemctl start nftables
Job for nftables.service failed because the control process exited with error code.
See "systemctl status nftables.service" and "journalctl -xeu nftables.service" for details.
So I understand this is a config issue, however iβm confused because this is the config file provided by Yunohost. As stated, when i try to regenerate it, the job fails.
Probably updated your system (updating the kernel too).
The nft kernel module cannot be loaded, have you tried restarting your server to the previous kernel version?
