It had been working fine before, but now the iptables-save output below is all I have. The firewall log hasn’t been modified in over a month.
One of the last entires in the log is this “iptables v1.8.9 (nf_tables): invalid port/service `disabled’ specified”. Digging deeper, the ‘disabled’ port appeared to be for LetsEncrypt, but even after assigning that to something, there is nothing new in the log, and the firewall doesn’t appear to be running.
I’ve tried re-enabling and restarting the firewall using fwconsole but the firewall returns to this broken state.
# Generated by iptables-save v1.8.9 (nf_tables) on Fri Mar 14 10:18:39 2025
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:fail2ban-apache-auth - [0:0]
-A INPUT -j fail2ban-apache-auth
COMMIT
# Completed on Fri Mar 14 10:18:39 2025