-->
  • Recent Articles

    Firewalld error in Oracle Linux 7: ERROR: FWDI_trusted' is not a chain

     The firewalld service is listed by systemd as being in a running state but its logging shows errors.

    Error:

    [root@podman root]#systemctl status firewalld
    ● firewalld.service - firewalld - dynamic firewall daemon
       Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
       Active: active (running) since Fri 2020-12-04 11:21:00 GMT; 1 years 1 months ago
         Docs: man:firewalld(1)
     Main PID: 1120 (firewalld)
        Tasks: 2
       Memory: 8.0M
       CGroup: /system.slice/firewalld.service
               └─1120 /usr/bin/python2 -Es /usr/sbin/firewalld --nofork --nopid
    
    Feb 02 14:51:26 podman firewalld[1120]: ERROR: '/usr/sbin/iptables-restore -w -n' failed: iptables-restore: line 10 failed
    Feb 02 14:51:26 podman firewalld[1120]: ERROR: COMMAND_FAILED: '/usr/sbin/iptables-restore -w -n' failed: iptables-restore: line 10 failed
    Feb 02 14:55:51 podman firewalld[1120]: ERROR: '/usr/sbin/iptables-restore -w -n' failed: iptables-restore v1.4.21: goto 'FWDI_trusted' is not a chain
    
                                                  Error occurred at line: 2...
    
    Hint: Some lines were ellipsized, use -l to show in full.


    Solution:

    To Solve this issue we need to update firewalld.

    [root@podman root]#yum update firewalld
    Loaded plugins: langpacks, ulninfo
    Resolving Dependencies
    --> Running transaction check
    ---> Package firewalld.noarch 0:0.6.3-11.0.1.el7 will be updated
    ---> Package firewalld.noarch 0:0.6.3-13.0.1.el7_9 will be an update
    --> Processing Dependency: firewalld-filesystem = 0.6.3-13.0.1.el7_9 for package: firewalld-0.6.3-13.0.1.el7_9.noarch
    --> Processing Dependency: python-firewall = 0.6.3-13.0.1.el7_9 for package: firewalld-0.6.3-13.0.1.el7_9.noarch
    --> Running transaction check
    ---> Package firewalld-filesystem.noarch 0:0.6.3-11.0.1.el7 will be updated
    ---> Package firewalld-filesystem.noarch 0:0.6.3-13.0.1.el7_9 will be an update
    ---> Package python-firewall.noarch 0:0.6.3-11.0.1.el7 will be updated
    ---> Package python-firewall.noarch 0:0.6.3-13.0.1.el7_9 will be an update
    --> Finished Dependency Resolution
    
    Dependencies Resolved
    
    =============================================================================================================================================================================================================
     Package                                                 Arch                                      Version                                               Repository                                     Size
    =============================================================================================================================================================================================================
    Updating:
     firewalld                                               noarch                                    0.6.3-13.0.1.el7_9                                    ol7_latest                                    449 k
    Updating for dependencies:
     firewalld-filesystem                                    noarch                                    0.6.3-13.0.1.el7_9                                    ol7_latest                                     51 k
     python-firewall                                         noarch                                    0.6.3-13.0.1.el7_9                                    ol7_latest                                    355 k
    
    Transaction Summary
    =============================================================================================================================================================================================================
    Upgrade  1 Package (+2 Dependent packages)
    

    If you can not start firewalld after update, Please check this document : Failed to start firewalld on Oracle Linux 7

    No comments