I have added the following rules to my firewall (
IPv4.INPUT.RULES = -j DROP; -m limit --limit 5/minute --limit-burst 10 -j LOG --log-prefix "INPUT-DROP: "; -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; -i lo -j ACCEPT
It seems like
--log-prefix flag makes the rule ignorable to the parser. If I remove it, the rule is added to ConnMan. Otherwise the second rule is dismissed. Any ideas why?