[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] CentOS 5.2, xen-3.3, network/firewall setup

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Meng Kuan <mengkuan@xxxxxxxxx>
Date: Wed, 22 Oct 2008 20:51:32 +0800
Delivery-date: Wed, 22 Oct 2008 05:52:16 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>


On Oct 22, 2008, at 8:17 PM, Robin Bowes wrote:

I have CentOS 5.2 Dom0, which was running xen-3.1.2 which I rebuiltfrom Fedora RPMS. All DomUs worked fine (CentOS PV installs).
I recently upgraded to xen-3.3 (from the gitco repo - nice job!) andI've found that guest networking is working the same. Specifically,the Dom0 firewall is blocking traffic to/from the DomUs.
If I turn off iptables on the dom0, the guest networking works OK.


Try the following tip from http://wiki.libvirt.org/page/Networking

Alternatively, you can prevent bridged traffic getting pushed throughthe host's iptables rules. In /etc/sysctl.conf add


# cat >> /etc/sysctl.conf <<EOF
net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0
EOF
# sysctl -p /etc/sysctl.conf


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- [Xen-users] Re: CentOS 5.2, xen-3.3, network/firewall setup
  - From: Robin Bowes

References:
- [Xen-users] CentOS 5.2, xen-3.3, network/firewall setup
  - From: Robin Bowes

Prev by Date: [Xen-users] CentOS 5.2, xen-3.3, network/firewall setup
Next by Date: Re: [Xen-users] Xen management
Previous by thread: [Xen-users] CentOS 5.2, xen-3.3, network/firewall setup
Next by thread: [Xen-users] Re: CentOS 5.2, xen-3.3, network/firewall setup
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.