Skip to content

Include nftables information in Agent supportbundle #7546

New issue
New issue
Open
#7547
Open
Include nftables information in Agent supportbundle#7546
#7547
Assignees
molegit9
Labels
area/opsIssues or PRs related to features which support network operations and troubleshootinggood first issueGood for newcomers
@hongliangl

Description

@hongliangl
hongliangl
opened on Nov 6, 2025

Antrea introduced nftables for some features. The supportbundle currently doesn't include nftables rules.

Reference:

antrea/pkg/support/dump_others.go

Lines 50 to 60 in 4e74a6b

func (d *agentDumper) dumpIPTables(basedir string) error {
c, err := iptables.New(d.v4Enabled, d.v6Enabled)
if err != nil {
return err
}
data, err := c.Save()
if err != nil {
return err
}
return writeFile(d.fs, filepath.Join(basedir, "iptables"), "iptables", data)
}

Only table ip antrea and table ip6 antrea should be included because these two tables are managed by Antrea.

root@kind-control-plane:/# nft list tables
table ip nat
table ip mangle
table ip filter
table ip6 mangle
table ip6 nat
table ip6 filter
table ip raw
table ip6 raw
table ip antrea
table ip6 antrea
table ip kube-proxy
table ip6 kube-proxy

Metadata

Metadata

Assignees

Labels

area/opsIssues or PRs related to features which support network operations and troubleshootinggood first issueGood for newcomers

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions