[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Xen-users] Networking Problem!!

Hi again

> add
>
> -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j
> ACCEPT
>
> to your /etc/sysconfig/iptables and service iptables restart


I added that line but still don't work :(

Thx

Lorena G

> -----Original Message-----
> From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
> [mailto:xen-users-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of
> lorena@xxxxxxxxxxxx
> Sent: Wednesday, August 16, 2006 11:58 AM
> To: McFadden, Gordon
> Cc: xen-users@xxxxxxxxxxxxxxxxxxx
> Subject: RE: [Xen-users] Networking Problem!!
>
> Hi Gordon and all!!
>
>> Can you post to the list the results of
>>
>> cat /etc/sysconfig/networkig-scripts/ifcfg-eth0
>> ifconfig
>> brctl
>>
>> All from your host (real) machine.
>>
>> Thanks,
>> Gord
>
> Thx for the quick answer but i solved my problem :). The problem is that
> i
> put the same MAC that my host into the vm in the xen domU config, so
> when
> i drop this and restart the domU the network works fine between the 2
> machines!
>
> But i have a second problem, i need to do a ssh from outside to the domU
> but i can't connect it! If i make a ssh from my host to the domU i get
> it!
>
> I read about the ip_forwarding and i added rules to the iptables, when i
> make tcpdump -ni eth0 (host) to see what is crossing i saw that the
> packages whan to cross but something in the domU don't want to let in :(
>
> I said in the domU #iptables --list and show me the next:
>
> Chain FORWARD (policy ACCEPT)
> target     prot opt source               destination
> RH-Firewall-1-INPUT  all  --  anywhere             anywhere
>
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination
> RH-Firewall-1-INPUT  all  --  anywhere             anywhere
>
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
>
> Chain RH-Firewall-1-INPUT (2 references)
> target     prot opt source               destination
> ACCEPT     all  --  anywhere             anywhere
> ACCEPT     icmp --  anywhere             anywhere            icmp any
> ACCEPT     ipv6-crypt--  anywhere             anywhere
> ACCEPT     ipv6-auth--  anywhere             anywhere
> ACCEPT     udp  --  anywhere             224.0.0.251         udp
> dpt:5353
> ACCEPT     udp  --  anywhere             anywhere            udp dpt:ipp
> ACCEPT     all  --  anywhere             anywhere            state
> RELATED,ESTABLISHED
> ACCEPT     tcp  --  anywhere             anywhere            state NEW
> tcp
> dpt:ssh
> REJECT     all  --  anywhere             anywhere            reject-with
> icmp-host-prohibited
>
>
> Could be some in the rules?
>
> Regards,
>
> Lorena G
>
>
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users
>



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.