WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] XEN 3.0.4-1 / Iptables is not working properly

from [Brad Plant] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] XEN 3.0.4-1 / Iptables is not working properly
From: Brad Plant <bplant@xxxxxxxxxxxx>
Date: Fri, 25 May 2007 09:16:00 +1000
Delivery-date: Thu, 24 May 2007 16:14:31 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <4628E92A.5030905@xxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <462717BC.6020602@xxxxxxxxxxxxxxx> <1176968610.3967.2.camel@xxxxxxxxxxxxxxxxxxxxxxxx> <46272754.6070803@xxxxxxxxxxxxxxx> <4628E92A.5030905@xxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx 
On Fri, 20 Apr 2007 18:24:10 +0200
Olivier Le Cam <Olivier.LeCam@xxxxxxxxxxxxxxxxxxxxx> wrote:

> I had about the same problem since Xen 3.0.3 (reported here: 
> http://lists.xensource.com/archives/html/xen-users/2006-12/msg00126.html).
> 
> You can try this on your dom0:
> 
> sysctl -w net.bridge.bridge-nf-call-iptables="0"

I have upgraded to xen-3.1, but this problem still exists (I've now experienced 
this on versions 3.0.3, 3.0.4, 3.1.0). Unfortunately using sysctl as shown 
above isn't a solution as any firewall of domU's implemented in dom0 ceases to 
work. I looked at possibly using ebtables for this instead, but it doesn't 
appear to be able to do connection tracking.

What other solutions exist?

Cheers,

Brad

Attachment: signature.asc
Description: PGP signature

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Re: [Xen-users] XEN 3.0.4-1 / Iptables is not working properly, Brad Plant <=
Previous by Date:  Re: [Xen-users] xen remote console and multiple admins, Nico Kadel-Garcia
Next by Date:  Re: [Xen-users] snapshot - backup for xen vm's, Nico Kadel-Garcia
Previous by Thread:  Re: [Xen-users] missing ethernet device, Juergen.Schinker
Next by Thread:  [Xen-users] Compiling Xen under debian - error building docs, James Harper
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy