I’m unable to run the nft in sys-net and sys-firewall. they’re just the vanilla VMs that shipped with Qubes r4.2. they’re based on the debian-12-xfce template.
But this doesn’t seem right, since I can set rules using qvm-firewall and they work fine (presumably the command uses nft under the hood).
So any idea why I can’t run this command manually? I’d like to use it to add port forwarding.
solved: it only works with sudo nft.
Otherwise, it complained with command not found, which was very confusing.
1 Like
nft is in /usr/sbin/ which is not in the PATH of non root users. nft is not useful for them anyway.
2 Likes