my source machine is a debian I''ve recently installed, so all present rules were set by me. but my target machine is a fedora5 I''m using only to test migration. Since fedora was already installed for other purposes, there are some rules in iptables.... the only line with target "REJECT" is: target prot opt in out source destination REJECT all -- any any anywhere anywhere reject-with icmp-host- prohibited it''s set either in the INPUT chain and the FORWARD chain. all other rules have target "ACCEPT" so I think they can''t do anything bad... Unfortunately I''m not sure to be allowed to delete the preexisting iptables rules. Do you think it could be my problem??? ----Messaggio originale---- Da: andrea15@tin.it Data: 16-lug-2007 10.54 AM A: <xen-users@lists.xensource.com> Ogg: R: Re: [Xen-users] Can' t migrate domains I tried so (xend-relocation-hosts-allow ''^.*$'') but I had the same results..... debian:~# xm migrate vm01 143.225.229.138 Error: can''t connect: No route to host Usage: xm migrate <Domain> <Host> however I haven''t yet used a networked solution for my disk images. they''re stored on local hard disk.I wanted to be sure of my configuration before, facing the problem after. But I don''t think It''s the reason for which migration doesn''t start at all... Any other suggestion? ---- Messaggio originale---- Da: mail4dla@googlemail.com Data: 16-lug-2007 10.22 AM A: "andrea15@tin.it"<andrea15@tin.it> Cc: <xen-users@lists. xensource.com> Ogg: Re: [Xen-users] Can't migrate domains Hi, On 7/15/07, andrea15@tin.it <andrea15@tin.it> wrote:> >(xend-relocation- address '''')> (xend-relocation-hosts-allow '''') > #(xend-> relocation-hosts-allow ''^localhost$ ^localhost\\. localdomain$'')> etc..... > Ithink in this way I should have avoided to block connections> from raemote host, allowing whole them. I think you are actually rejecting connections from everywhere. To allow all connections, you should try ''^.*$'', but I suggest that you add some more restrictive regexp in a non-test environment ;-) hth dla _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
mail4dla@googlemail.com
2007-Jul-16 16:05 UTC
Re: R:Re: [Xen-users] Can''t migrate domains
Yes, i''d guess so. Try iptables -F on the target machine. Even if you use block devices, the transfer itself should work, but expect the migrated domain to hang. On 7/16/07, andrea15@tin.it <andrea15@tin.it> wrote:> > my source machine is a debian I''ve recently installed, so all present > rules were set by me. > but my target machine is a fedora5 I''m using only > to test migration. Since fedora was already installed for other > purposes, there are some rules in iptables.... > the only line with > target "REJECT" is: > > target prot opt in out > source destination > REJECT all -- any any > anywhere anywhere reject-with icmp-host- > prohibited > > it''s set either in the INPUT chain and the FORWARD chain. > all other rules have target "ACCEPT" so I think they can''t do anything > bad... > Unfortunately I''m not sure to be allowed to delete the > preexisting iptables rules. > Do you think it could be my problem??? > > > ----Messaggio originale---- > Da: andrea15@tin.it > Data: 16-lug-2007 10.54 > AM > A: <xen-users@lists.xensource.com> > > Ogg: R: Re: [Xen-users] Can' > t migrate domains > > I tried so > (xend-relocation-hosts-allow ''^.*$'') > but > I had the same > results..... > debian:~# xm migrate vm01 143.225.229.138 > Error: can''t > connect: No route to host > Usage: xm migrate <Domain> > <Host> > > however I > haven''t yet used a networked solution for my disk > images. they''re > stored on local hard disk.I wanted to be sure of my > configuration > before, facing the problem after. > But I don''t think It''s > the reason for > which migration doesn''t start at all... > > Any other > suggestion? > ---- > Messaggio originale---- > Da: mail4dla@googlemail.com > Data: 16-lug-2007 > 10.22 AM > A: "andrea15@tin.it"<andrea15@tin.it> > Cc: > <xen-users@lists. > xensource.com> > Ogg: Re: [Xen-users] Can't migrate > domains > > Hi, > > On > 7/15/07, andrea15@tin.it <andrea15@tin.it> wrote: > > > > > (xend-relocation- > address '''') > > (xend-relocation-hosts-allow '''') > > # > (xend- > > relocation- > hosts-allow ''^localhost$ ^localhost\\. > localdomain$'') > > etc..... > > I > think in this way I should have avoided > to block connections > > from ra > emote host, allowing whole them. > > > I > think you are actually rejecting > connections from everywhere. > To allow > all connections, you should try > ''^.*$'', but I suggest that you add > some more restrictive regexp in a > non-test environment ;-) > > hth > dla > > > > > >_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users