[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] howto re-create XEN network bridge?

  • To: "Fajar A. Nugraha" <fajar@xxxxxxxxx>
  • From: Rudi Ahlers <Rudi@xxxxxxxxxxx>
  • Date: Fri, 6 Nov 2009 12:48:59 +0200
  • Cc: xen-users <xen-users@xxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Fri, 06 Nov 2009 02:50:02 -0800
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:cc:content-type; b=T7GyFsaXhy8IKq5JjVjVDcCJ5hkA8h2UDaY63T5uGh04+Sbzwb+8AzlkNxYeJ5t1lS 6hGcGeYiAa20SVk7sOWogLU1ZQ0UeA+UoGYfTVxoIhQbnYaiFQSWMY4DZRqiuy9NIJkO 3rzsaUSYg0b1YD3eIwkZxDiAQ9L3Lu4unShBQ=
  • List-id: Xen user discussion <xen-users.lists.xensource.com>
On Fri, Nov 6, 2009 at 12:38 PM, Fajar A. Nugraha <fajar@xxxxxxxxx> wrote:
> On Fri, Nov 6, 2009 at 5:25 PM, Rudi Ahlers <Rudi@xxxxxxxxxxx> wrote:
>
>>> IMHO you should first make sure that it's not iptables problem. See
>>> the content of
>>> /proc/sys/net/ipv4/netfilter/ip_conntrack_count
>>> /proc/sys/net/ipv4/netfilter/ip_conntrack_max
>
>
>> I tried to look at the ip_contrack files that you suggested, but there
>> are no such files on the server:
>>
>>
>> root@zaxen01:[~]$ locate ip_conntrack_count
>> root@zaxen01:[~]$ locate ip_conntrack_max
>
> err ... I DIDN'T tell you to use "locate".
> I DID give you the exact file path.

Well, no need to be rude, but to me more specific, those files don't exist:

root@zaxen01:[~]$ more /proc/sys/net/ipv4/netfilter/ip_conntrack_count
/proc/sys/net/ipv4/netfilter/ip_conntrack_count: No such file or directory
root@zaxen01:[~]$ locate ip_conntrack_count


Nor is there a /proc/sys/net/ipv4/netfilter/ folder.....
ll /proc/sys/net/ipv4/netfilter/
ls: /proc/sys/net/ipv4/netfilter/: No such file or directory



>
>> Also, there's no firewall running ont he dom0 that blocks anything for
>> the domU's - I don't quite know how todo this even.
>
> The default xen bridge setup adds some iptables rules. Even when you
> don't explicitly set them up.

AND, as I said in my first post, the firewall is disabled:

root@zaxen01:[~]$ iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination



>
> --
> Fajar
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users
>



-- 
Kind Regards
Rudi Ahlers
CEO, SoftDux Hosting
Web: http://www.SoftDux.com
Office: 087 805 9573
Cell: 082 554 7532

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.