Nftables backend is not compatible with the current
kubeadm packages(it causes duplicated firewall rules
and breaks kube-proxy) and will failed calico-node pod,
either.
Legacy mode is required by kubernetes, however, the sbins
related to legacy are removed in el8 iptables rpm.
this commit containes:
1. libnftnl: build iptables dependency libnftnl-dev rpm,
which is not provided by centos offical repo.
2. iptables: pkg the "*legacy*" sbins and "/man8/xtables-legacy"
into the iptables rpm.
Change-Id: Ie5f09e14d5139ce0a2a58416f27d10d64622f0c2
Story: 2006729
Task: 38711
Signed-off-by: SidneyAn <ran1.an@intel.com>
6cf6e96910