[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] IPtables working on domU but not dom0



Hi All,
  Ok, I'm still struggling with this. I understand now how the bridge and
peth0, etc are working, but I still can't find a good iptables configuration
example. I'm accessing remotely so I'm desperate not to lock everything out
of the machine otherwise I'm in trouble.
  Can someone send me an example of their IPtables configuration file for
dom0 so I can see how they have set it?


Lyle

------------------------------------------------------------
Lyle Hopkins          - CosmicPerl.com CGI Scripts -
Internet software solutions for the professional webmaster
Email: webmaster@xxxxxxxxxxxxxx
Web site: http://www.cosmicperl.com
Specializing in Affiliate Software solutions
------------------------------------------------------------
----- Original Message ----- 
From: "David Koski" <david@xxxxxxxxxxxxxxxx>
To: <xen-users@xxxxxxxxxxxxxxxxxxx>
Sent: Monday, February 20, 2006 4:21 PM
Subject: Re: [Xen-users] IPtables working on domU but not dom0


> Have a look at this:
>
> http://www.shorewall.net/Xen.html
>
> Even if you don't use shorewall it might be helpful.
>
> Regards,
> David Koski
> david.nospham@xxxxxxxxxxxxxxxx
>
> On Monday 20 February 2006 08:17 am, Xen wrote:
> > Hi,
> >   Can anyone shed light on this? Is there other firewall software I
could try that wouldn't conflict?
> >
> > Lyle
> >
> > ------------------------------------------------------------
> > Lyle Hopkins          - CosmicPerl.com CGI Scripts -
> > Internet software solutions for the professional webmaster
> > Email: webmaster@xxxxxxxxxxxxxx
> > Web site: http://www.cosmicperl.com
> > Specializing in Affiliate Software solutions
> > ------------------------------------------------------------
> >   ----- Original Message ----- 
> >   From: Xen
> >   To: xen-users@xxxxxxxxxxxxxxxxxxx
> >   Sent: Saturday, February 18, 2006 2:04 AM
> >   Subject: Re: [Xen-users] IPtables working on domU but not dom0
> >
> >
> >   By the way on Fedora Core 4, dual opteron, 4GB ram.
> >
> >
> >   Lyle
> >
> >   ------------------------------------------------------------
> >   Lyle Hopkins          - CosmicPerl.com CGI Scripts -
> >   Internet software solutions for the professional webmaster
> >   Email: webmaster@xxxxxxxxxxxxxx
> >   Web site: http://www.cosmicperl.com
> >   Specializing in Affiliate Software solutions
> >   ------------------------------------------------------------
> >     ----- Original Message ----- 
> >     From: Xen
> >     To: xen-users@xxxxxxxxxxxxxxxxxxx
> >     Sent: Saturday, February 18, 2006 12:13 AM
> >     Subject: [Xen-users] IPtables working on domU but not dom0
> >
> >
> >     Hi All,
> >       for some reason iptables wont load on dom0 although they are
loading fine on all the guest domains. I built the xen 3 kernel on the
machine. I checked that iptables were included. I can't figure out why it
wont load. I'm not getting any useful errors:-
> >     "Applying iptables firewall rules: iptables-restore: line 27
failed" - line 22 is COMMIT. The iptables file is identical to the domU one
that works.
> >
> >     Any help would be much appreciated. I don't like the idea of dom0
being wide open.
> >
> >
> >     Lyle
> >
> >     ------------------------------------------------------------
> >     Lyle Hopkins          - CosmicPerl.com CGI Scripts -
> >     Internet software solutions for the professional webmaster
> >     Email: webmaster@xxxxxxxxxxxxxx
> >     Web site: http://www.cosmicperl.com
> >     Specializing in Affiliate Software solutions
> >     ------------------------------------------------------------
> >
> >
>
> --------------------------------------------------------------------------
--
> >
> >
> >     _______________________________________________
> >     Xen-users mailing list
> >     Xen-users@xxxxxxxxxxxxxxxxxxx
> >     http://lists.xensource.com/xen-users
> >
> >
>
> --------------------------------------------------------------------------
----
> >
> >
> >   _______________________________________________
> >   Xen-users mailing list
> >   Xen-users@xxxxxxxxxxxxxxxxxxx
> >   http://lists.xensource.com/xen-users
>
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.