Yum update getting "cannot install the bext update candidate" error

I have an AlmaLinux 9.5 system. I continually watch for updates using “yum check-update”. I found there were a handful of updates available a few days ago.
When I try to run “yum update”, I see the following error:

Error:
Problem: cannot install the best update candidate for package iptables-services-1.8.10-5.1.el9.next.noarch

  • nothing provides (iptables-libs = 1.8.10-6.el9 or iptables-libs = 1.8.10-6.el9_4) needed by iptables-services-1.8.10-6.1.el9.next.noarch from epel-next
    (try to add ‘–skip-broken’ to skip uninstallable packages or ‘–nobest’ to use not only best candidate packages)

I’ve been searching for a solution, but can’t find anything that works for my issue.

Looking at https://rpmfind.net/linux/rpm2html/search.php?query=iptables-libs I don’t see the versioned package associated with AlmaLinux 9.5. Is that the problem? Will that package be available for AlmaLinux 9.5 in the near future? Should I just wait and try again later?

Can anyone provide help on this? I see now my system needs a new kernel and I really like to get those installed as soon as possible, but this problem has me stuck.

The epel-next is not a repo for Alma. Isn’t it a repo for CentOS Stream?

If so, you do not want to use that repo.
I would:

sudo dnf config-manager --disable epel-next

and dowgrade or remove the iptables-services. (Preferably change to nftables.service.)


AlmaLinux 9 has iptables-libs-1.8.10-4.el9_4
EPEL 9 has iptables-services-1.8.10-4.1.el9
They work together.

CentOS Stream 9 does probably have iptables-libs-1.8.10-6.el9
EPEL Next has iptables-services-1.8.10-6.1.el9 that requires iptables-libs-1.8.10-6.el9.
Those are not for AlmaLinux 9.

1 Like

I added epel and epel-next based on this article:
https://linux.how2shout.com/enable-epel-and-epel-next-in-almalinux-or-rocky-linux-9/

Are you sure epel-next is not for use with AlmaLinux-9?

I looked at the packages installed on my system which come via epel-next and there are quite a lot of them.

I really don’t want to change to something other than iptables, as I use my machine as a firewall and it depends heavily on iptables.

I disabled the epel-next repo and then removed the iptables-services package.
I then installed the iptables-services package and it got it from epel.

I am now able to run the yum update and it no longer complains.

Thanks for your help

Yes. See Extra Packages for Enterprise Linux (EPEL) :: Fedora Docs