plugin type=portmap failed (add): unable to create chain CNI-HOSTPORT-SETMARK

Trying to run kind cluster in linux mint with nerdctl. It was working previously, may be upgrading some packages causing this. I am able to run other containers like postgres. ## Error

$ sudo kind create cluster
Creating cluster "kind" ...
 ✓ Ensuring node image (kindest/node:v1.32.2) 🖼
 ✗ Preparing nodes 📦
ERROR: failed to create cluster: command "nerdctl run --name kind-control-plane --hostname kind-control-plane --label io.x-k8s.kind.role=control-plane --privileged --security-opt seccomp=unconfined --security-opt apparmor=unconfined --tmpfs /tmp --tmpfs /run --volume /var --volume /lib/modules:/lib/modules:ro -e KIND_EXPERIMENTAL_CONTAINERD_SNAPSHOTTER --detach --tty --label io.x-k8s.kind.cluster=kind --net kind --restart=on-failure:1 --init=false --publish=127.0.0.1:33831:6443/TCP -e KUBECONFIG=/etc/kubernetes/admin.conf kindest/node:v1.32.2@sha256:f226345927d7e348497136874b6d207e0b32cc52154ad8323129352923a3142f" failed with error: exit status 1
Command Output: time="2025-06-28T10:30:22+05:30" level=fatal msg="failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: error during container init: error running createRuntime hook #0: exit status 1, stdout: , stderr: time=\"2025-06-28T10:30:22+05:30\" level=fatal msg=\"failed to call cni.Setup: plugin type=\\\"portmap\\\" failed (add): unable to create chain CNI-HOSTPORT-SETMARK: running [/usr/sbin/ip6tables -t nat -C CNI-HOSTPORT-SETMARK -m comment --comment CNI portfwd masquerade mark -j MARK --set-xmark 0x2000/0x2000 --wait]: exit status 2: Warning: Extension MARK revision 0 not supported, missing kernel module?\\nip6tables v1.8.10 (nf_tables): unknown option \\\"--set-xmark\\\"\\nTry `ip6tables -h' or 'ip6tables --help' for more information.\\n\""

## System Info

$ which docker
/usr/local/bin/docker

$ ls -la /usr/local/bin/docker
lrwxrwxrwx 1 root root 22 Feb 21 00:07 /usr/local/bin/docker -> /usr/local/bin/nerdctl

$ sudo uname -a
Linux HP-ZBook-15-G4 6.8.0-57-generic #59-Ubuntu SMP PREEMPT_DYNAMIC Sat Mar 15 17:40:59 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

$ sudo nerdctl -v
nerdctl version 2.0.3

$ containerd -v
containerd github.com/containerd/containerd/v2 v2.0.2 c507a0257ea6462fbd6f5ba4f5c74facb04021f4

$ /opt/cni/bin/portmap -v
CNI portmap plugin v1.6.2
CNI protocol versions supported: 0.1.0, 0.2.0, 0.3.0, 0.3.1, 0.4.0, 1.0.0, 1.1.0

$ iptables --version
iptables v1.8.10 (nf_tables)

$ sudo lsmod | grep mark
xt_mark                12288  1
x_tables               65536  10 xt_conntrack,nft_compat,xt_multiport,xt_tcpudp,xt_addrtype,xt_nat,xt_comment,ip_tables,xt_MASQUERADE,xt_mark