[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] xen breaks iptables

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Markus Schiltknecht <markus@xxxxxxxxxx>
Date: Thu, 16 Nov 2006 11:31:31 +0100
Delivery-date: Thu, 16 Nov 2006 02:31:49 -0800
List-id: Xen user discussion <xen-users.lists.xensource.com>

Hi,

I'm struggling with my iptables configuration since I've installed Xen.Before, I had the host/dom0 doing port forwarding with:


iptables -t nat -A PREROUTING -p tcp -i eth0 -d $PUBLIC_IP \
        --dport 80 -j DNAT --to 192.168.0.190

That worked like a charm. After installing and starting Xen, I found outeth0 became peth0 and being bridged in xenbr0. That's all fine anddocumented. So I thought I could just alter the incomming interface frometh0 to xenbr0 in the above port forwarding rule:


iptables -t nat -A PREROUTING -p tcp -i xenbr0 -d $PUBLIC_IP \
        --dport 80 -j DNAT --to 192.168.0.190

But that doesn't work anymore. The rule's packet counter counts up whensending a packet to port 80, but it does not make it into the FORWARDtable of iptables.

Does xenbr0 block this packet somehow? I've been reading about ebtables,but only got some C source examples.


Help greatly appreciated.

Regards

Markus

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- Re: [Xen-users] xen breaks iptables
  - From: Markus Schiltknecht

Prev by Date: [Xen-users] => 2G RAM for domU problem
Next by Date: Re: [Xen-users] Xen/HVM on Intel 965 Chipset, Asus P5B-VM BIOS
Previous by thread: [Xen-users] => 2G RAM for domU problem
Next by thread: Re: [Xen-users] xen breaks iptables
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.