Thanks for your help, @nixuser and @besser82!

@clnetbox Yes, sadly it seems impossible to steer 'dnf distrosync' to also install a required package (like iptables-libs in this case) while downgrading things. At least I haven't been able to. So I can assume this was a local issue on your side and the current release is fine?

@clnetbox Please do not install iptables-nft. Just perform the update, but prior to that fetch the data I asked you to.

@clnetbox Sorry, but that's not what your dumps indicate: You wrote "Before and after the update : " and "ls -l /usr/sbin | grep iptables" doesn't contain /usr/sbin/iptables. So is /usr/sbin/iptables present with iptables-1.8.7-3 or not? If it is, could you please provide proper output instead of "all at once"?

@clnetbox So you didn't have /usr/sbin/iptables even before the update? What version of iptables are you updating from?

@clnetbox I tested the update with and without iptables-nft and alternatives in auto as well as manual mode. This should not fail for you, so could you please check in detail what's happening? Please dump: - /var/lib/alternatives - the output of 'ls -l /etc/alternatives/' - the otuput of 'ls -l /usr/sbin/iptables' before and after the update.

BTW: I noticed you used 'locate' to check for file existence. This might be a red herring as the output comes from a database and not the actual filesystem state.

@adamwill Stable threshold is 10, current karma is "only" 9. I'll make an exception and push it manually though.

The package rename serves two purposes: On one hand it reflects how upstream renamed binaries. On the other, it helps with the ebtables-services package split.

This update has been unpushed.