To reproduce:
set firewall state-policy established action accept set firewall state-policy related action accept set firewall state-policy invalid action drop
Commit:
vyos@r11-roll# commit [ firewall ] VyOS had an issue completing a command. Report time: 2022-01-03 19:38:02 Image version: VyOS 1.4-rolling-202201020317 Release train: sagitta Built by: [email protected] Built on: Sun 02 Jan 2022 03:17 UTC Build UUID: 4ede964a-6099-4799-b36e-a22a6b9a1914 Build commit ID: e933c7e50fd4f0 Architecture: x86_64 Boot via: installed image System type: KVM guest Hardware vendor: QEMU Hardware model: Standard PC (Q35 + ICH9, 2009) Hardware S/N: Hardware UUID: 8e21d64e-e498-475c-9866-290cd53a3b86 Traceback (most recent call last): File "/usr/libexec/vyos/conf_mode/firewall.py", line 315, in <module> apply(c) File "/usr/libexec/vyos/conf_mode/firewall.py", line 301, in apply cmd(f'nft insert rule ip filter {chain} jump VYOS_STATE_POLICY') File "/usr/lib/python3/dist-packages/vyos/util.py", line 161, in cmd raise OSError(code, feedback) PermissionError: [Errno 1] failed to run command: nft insert rule ip filter INPUT jump VYOS_STATE_POLICY returned: exit code: 1 noteworthy: cmd 'nft insert rule ip filter INPUT jump VYOS_STATE_POLICY' returned (out): returned (err): Error: No such file or directory; did you mean chain ‘OUTPUT’ in table ip ‘raw’? insert rule ip filter INPUT jump VYOS_STATE_POLICY ^^^^^ [[firewall]] failed Commit failed