How to stop firewalld / nftables tracking DNS queries in RHEL 8

Hi all,

In RHEL 7 and earlier we could stop iptables from filling its ip_conntrack table up by using the NOTRACK option.

In RHEL 8 iptables is deprecated, so I need to find an alternative way of doing this.

Ideally I want to be able to use firewalld to do this, but I can live with using the --direct option of firewalld if required.

All suggestions would be appreciated.

Started 2023-01-16T11:54:43+00:00 by

Benson Rosen

Newbie 10 points

Responses

Here are the common uses of Markdown.

Code blocks

~~~
Code surrounded in tildes is easier to read
~~~

Links/URLs

[Red Hat Customer Portal](https://access.redhat.com)