Netfilter docker keeps crashing

ventra007

don’t know since when but this appears after finding out that failed logins weren’t being blocked by fail2ban / netfilter.
container keeps crashing then the count starts from the top again never banning the public ip.

i fixed it myself and attempted to suggest it via github:
pull request
but i obviously did something wrong according to the guidlines, maybe someone else can adjust it and repost and get credit (don’t really care).

netfilter-mailcow-1 | 2025-05-08T11:19:49.010835487Z 193.46.255.40 matched rule id 3 (warning: unknown[193.46.255.40]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=maryann@co.za) netfilter-mailcow-1 | 2025-05-08T11:19:49.013407614Z 3 more attempts in the next 1800 seconds until 193.46.255.40/32 is banned netfilter-mailcow-1 | 2025-05-08T11:19:49.014542851Z Error reading log line from pubsub: '0' does not appear to be an IPv4 or IPv6 address netfilter-mailcow-1 exited with code 2 netfilter-mailcow-1 | 2025-05-08T11:19:49.591336955Z # Warning: table ip nat is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:19:49.591968763Z # Warning: table ip filter is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:19:49.594268320Z # Warning: table ip6 nat is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:19:49.594281034Z # Warning: table ip6 filter is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:19:49.594309248Z # Warning: table ip raw is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:19:50.035923569Z Using NFTables backend netfilter-mailcow-1 | 2025-05-08T11:19:50.041032576Z Clearing all bans netfilter-mailcow-1 | 2025-05-08T11:19:50.049178809Z Clear completed: ip netfilter-mailcow-1 | 2025-05-08T11:19:50.057688739Z Clear completed: ip6 netfilter-mailcow-1 | 2025-05-08T11:19:50.057794683Z Initializing mailcow netfilter chain netfilter-mailcow-1 | 2025-05-08T11:19:50.067275515Z MAILCOW ip chain created successfully. netfilter-mailcow-1 | 2025-05-08T11:19:50.102833343Z MAILCOW ip6 chain created successfully. netfilter-mailcow-1 | 2025-05-08T11:19:50.140759586Z Setting MAILCOW isolation netfilter-mailcow-1 | 2025-05-08T11:19:50.149009492Z Watching Redis channel F2B_CHANNEL netfilter-mailcow-1 | 2025-05-08T11:19:50.154226069Z Blacklist was changed, it has 1 entries netfilter-mailcow-1 | 2025-05-08T11:19:50.158704523Z Added host/network 81.30.107.0/24 to blacklist netfilter-mailcow-1 | 2025-05-08T11:20:35.495036095Z 193.46.255.40 matched rule id 3 (warning: unknown[193.46.255.40]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=opal@co.za) netfilter-mailcow-1 | 2025-05-08T11:20:35.496984066Z 3 more attempts in the next 1800 seconds until 193.46.255.40/32 is banned netfilter-mailcow-1 | 2025-05-08T11:20:35.497661254Z Error reading log line from pubsub: '0' does not appear to be an IPv4 or IPv6 address netfilter-mailcow-1 exited with code 2 netfilter-mailcow-1 | 2025-05-08T11:20:36.042504821Z # Warning: table ip nat is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:20:36.043492628Z # Warning: table ip filter is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:20:36.044703181Z # Warning: table ip6 nat is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:20:36.044838289Z # Warning: table ip6 filter is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:20:36.045403281Z # Warning: table ip raw is managed by iptables-nft, do not touch! netfilter-mailcow-1 | 2025-05-08T11:20:36.475373013Z Using NFTables backend netfilter-mailcow-1 | 2025-05-08T11:20:36.480021808Z Clearing all bans netfilter-mailcow-1 | 2025-05-08T11:20:36.486238340Z Clear completed: ip netfilter-mailcow-1 | 2025-05-08T11:20:36.492472883Z Clear completed: ip6 netfilter-mailcow-1 | 2025-05-08T11:20:36.492479122Z Initializing mailcow netfilter chain netfilter-mailcow-1 | 2025-05-08T11:20:36.500594738Z MAILCOW ip chain created successfully. netfilter-mailcow-1 | 2025-05-08T11:20:36.540648569Z MAILCOW ip6 chain created successfully. netfilter-mailcow-1 | 2025-05-08T11:20:36.573128380Z Setting MAILCOW isolation netfilter-mailcow-1 | 2025-05-08T11:20:36.582475976Z Watching Redis channel F2B_CHANNEL netfilter-mailcow-1 | 2025-05-08T11:20:36.587038244Z Blacklist was changed, it has 1 entries netfilter-mailcow-1 | 2025-05-08T11:20:36.592627150Z Added host/network 81.30.107.0/24 to blacklist netfilter-mailcow-1 | 2025-05-08T11:21:27.414413216Z 193.46.255.40 matched rule id 3 (warning: unknown[193.46.255.40]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=alison@co.za) netfilter-mailcow-1 | 2025-05-08T11:21:27.415899526Z 3 more attempts in the next 1800 seconds until 193.46.255.40/32 is banned netfilter-mailcow-1 | 2025-05-08T11:21:27.416931420Z Error reading log line from pubsub: '0' does not appear to be an IPv4 or IPv6 address netfilter-mailcow-1 exited with code 2