| |
|
 |
|
 |
|
|
|
| |
|
|
xen-changelog
[Xen-changelog] [xen-unstable] tools/hotplug/Linux: supply --physdev-is-
# HG changeset patch
# User Sander Eikelenboom <linux@xxxxxxxxxxxxxx>
# Date 1289399839 0
# Node ID b0fe8260cefa87d0237278dd4c9fae7113b459ea
# Parent c19e3371f31b2b039f38026a225be266df151316
tools/hotplug/Linux: supply --physdev-is-bridged in iptables runes
With newer (pvops) kernels logs get flooded with this iptables
warning: physdev match: using --physdev-out in the OUTPUT, FORWARD and
POSTROUTING chains for non-bridged traffic is not supported anymore
Using the --physdev-is-bridged option prevents this.
See also: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=571634#10
Signed-off-by: Sander Eikelenboom <linux@xxxxxxxxxxxxxx>
Signed-off-by: Ian Jackson <ian.jackson@xxxxxxxxxxxxx>
---
tools/hotplug/Linux/vif-common.sh | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
diff -r c19e3371f31b -r b0fe8260cefa tools/hotplug/Linux/vif-common.sh
--- a/tools/hotplug/Linux/vif-common.sh Wed Nov 10 14:15:23 2010 +0000
+++ b/tools/hotplug/Linux/vif-common.sh Wed Nov 10 14:37:19 2010 +0000
@@ -105,10 +105,10 @@ frob_iptable()
local c="-D"
fi
- iptables "$c" FORWARD -m physdev --physdev-in "$vif" "$@" -j ACCEPT \
+ iptables "$c" FORWARD -m physdev --physdev-is-bridged --physdev-in "$vif"
"$@" -j ACCEPT \
2>/dev/null &&
iptables "$c" FORWARD -m state --state RELATED,ESTABLISHED -m physdev \
- --physdev-out "$vif" -j ACCEPT 2>/dev/null
+ --physdev-is-bridged --physdev-out "$vif" -j ACCEPT 2>/dev/null
if [ "$command" == "online" -a $? -ne 0 ]
then
_______________________________________________
Xen-changelog mailing list
Xen-changelog@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-changelog
|
| <Prev in Thread] |
Current Thread |
[Next in Thread> |
- [Xen-changelog] [xen-unstable] tools/hotplug/Linux: supply --physdev-is-bridged in iptables runes,
Xen patchbot-unstable <=
|
|
|
| |
|
Home