On Fri, Nov 6, 2009 at 11:48 AM, Fajar A. Nugraha <fajar@xxxxxxxxx> wrote:
> On Fri, Nov 6, 2009 at 6:58 AM, Rudi Ahlers <Rudi@xxxxxxxxxxx> wrote:
>> Hi all,
>>
>> Is it possible to re-create the XEN network bridge? On one of my XEN
>> servers, somce domU's can't connect to the outside world, yet I can
>> connect to the VPS' from the internet on SSH. It seems that outgoing
>> traffic is not working as it should, but incoming is, and I think it
>> might have todo with the bridge. How would I re-create the bridge to
>> see if it sovles the problem?
>
> Take a look at the output of "brctl show", and also see the contents
> of "/etc/xen/scripts/network-bridge".
> IMHO you should first make sure that it's not iptables problem. See
> the content of
> /proc/sys/net/ipv4/netfilter/ip_conntrack_count
> /proc/sys/net/ipv4/netfilter/ip_conntrack_max
>
> if count is close to max, you could either:
> - increase ip_conntrack_max, or
> - disable iptables for bridged traffic (echo 0 >
> /proc/sys/net/bridge/bridge-nf-call-iptables)
>
> --
> Fajar
>
> _______________________________________________
Thank you Fajar,
I tried to look at the ip_contrack files that you suggested, but there
are no such files on the server:
root@zaxen01:[~]$ locate ip_conntrack_count
root@zaxen01:[~]$ locate ip_conntrack_max
root@zaxen01:[~]$
root@zaxen01:[~]$ uname -a
Linux zaxen01.softdux.com 2.6.18-128.1.16.el5xen #1 SMP Tue Jun 30
06:39:23 EDT 2009 x86_64 x86_64 x86_64 GNU/Linux
root@zaxen01:[~]$ cat /etc/redhat-release
CentOS release 5.3 (Final)
Also, there's no firewall running ont he dom0 that blocks anything for
the domU's - I don't quite know how todo this even.
Any other suggestions?
--
Kind Regards
Rudi Ahlers
CEO, SoftDux Hosting
Web: http://www.SoftDux.com
Office: 087 805 9573
Cell: 082 554 7532
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
|