[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] XEN 3.0.4-1 / Iptables is not working properly

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Brad Plant <bplant@xxxxxxxxxxxx>
Date: Fri, 25 May 2007 09:16:00 +1000
Delivery-date: Thu, 24 May 2007 16:14:31 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>

On Fri, 20 Apr 2007 18:24:10 +0200
Olivier Le Cam <Olivier.LeCam@xxxxxxxxxxxxxxxxxxxxx> wrote:

> I had about the same problem since Xen 3.0.3 (reported here: 
> http://lists.xensource.com/archives/html/xen-users/2006-12/msg00126.html).
> 
> You can try this on your dom0:
> 
> sysctl -w net.bridge.bridge-nf-call-iptables="0"

I have upgraded to xen-3.1, but this problem still exists (I've now experienced 
this on versions 3.0.3, 3.0.4, 3.1.0). Unfortunately using sysctl as shown 
above isn't a solution as any firewall of domU's implemented in dom0 ceases to 
work. I looked at possibly using ebtables for this instead, but it doesn't 
appear to be able to do connection tracking.

What other solutions exist?

Cheers,

Brad

Attachment: signature.asc
Description: PGP signature

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Prev by Date: Re: [Xen-users] xen remote console and multiple admins
Next by Date: Re: [Xen-users] snapshot - backup for xen vm's
Previous by thread: Re: [Xen-users] missing ethernet device
Next by thread: [Xen-users] Compiling Xen under debian - error building docs
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.