This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


RE: [Xen-users] bridge-utils problem

To: "Tommy Huang" <tommy24@xxxxxxxx>, <xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] bridge-utils problem
From: "James Harper" <james.harper@xxxxxxxxxxxxxxxx>
Date: Mon, 22 Sep 2008 15:26:23 +1000
Delivery-date: Sun, 21 Sep 2008 22:27:03 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <BAY117-W420E37F2BD141DCAFDB5B2C74B0@xxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <BAY117-W420E37F2BD141DCAFDB5B2C74B0@xxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AckccVxsF1b7k6pySRqFHt0V4kIBZAAAi/0w
Thread-topic: [Xen-users] bridge-utils problem
> I installed bridge-utils on my machine. Then I executed the script
> "network-bridge".
> All at a sudden, I cannot remote login my machine. Then I found that I
> cannot access the Internet on that machine.
> Is there anything I should notice when I installed bridge-utils?
> One strange thing is that I still can get the dynamic IP on that
> So I think it can connect to the DHCP server.
> But it just cannot connected to the Internet.
> Also, I allow all traffic on that machine through iptables.
> So I really don't know what happened.
> The OS of my machine is Opensuse 10.3.
> Any response is appreciated. Thanks in advance.

In /proc/sys/net/bridge there are some settings that affect how the
bridge traffic interacts with iptables. I find that I have to set
bridge-nf-call-iptables=0 to make things work the way I expect, eg:

echo 0 >/proc/sys/net/bridge/bridge-nf-call-iptables


Xen-users mailing list