[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] problems with Iptables in DomU

On Tue, 2006-07-25 at 09:06 +0200, Cristian Livadaru wrote:
> On Mon, Jul 24, 2006 at 10:40:08AM +0200, Cristian Livadaru wrote:
> > Now that my xen is running, I wanted to set up dthe firewall on my domU
> > but all I get is this error:
> > 
> > lcx:~# iptables -L
> > iptables v1.2.11: can't initialize iptables table `filter': Module is
> > wrong version
> > Perhaps iptables or your kernel needs to be upgraded.
> > 
> > the modules for iptables are loaded:
> > iptable_filter          4736  0
> > ip_tables              23424  3
> > iptable_mangle,iptable_nat,iptable_filter
> > 
> > I have the same problem with Xen 3.0.1 and 2.0
> > on dom0 it seems to work:
> > 
> > master:~# iptables -L
> > Chain INPUT (policy ACCEPT)
> > target     prot opt source               destination
> > 
> > I tripplechecked the howto and all kernel settings but can't figure
> > where the problem is.
> > 
> > Regards,
> > 
> > Cristian Livadaru
> 
> Nobody here that can help? 
> This is so annoying that I will even pay for support if somebody can
> solve this issue, I wasted already 2 days trying to figure this out!
> None of the other tips I have received have helped.
> 
> Cris
<snip>
I believe we hit this problem when we set up our first Xen test boxes
for the ISCS network security management project
(http://iscs.sourceforge.net) (which, by the way, has worked very
successfully with Xen).

If I recall, the problem was that we had a domU image with older
iptables userspace tools and a kernel with a newer version of iptables.
One would encounter the same problem in the reverse situation.  It can
also result in unexplained segmentation faults.  Make sure that the
kernel and the userspace tools (e.g., the iptables command) are the same
version.  Hope this helps - John
-- 
John A. Sullivan III
Open Source Development Corporation
+1 207-985-7880
jsullivan@xxxxxxxxxxxxxxxxxxx

Financially sustainable open source development
http://www.opensourcedevel.com


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.