I have a xen machine that has iptables turned off, and after a reboot it started behaving badly during times when network IO rose to anything other than almost nil. Since I know iptables makes xen unstable without some additional config and since its isolated I just have is disabled. As a result it was the last place I looked and spent the better half of the day chasing my tail. Somehow it gets turned on after a reboot, how can I deduce what is activating it? Thanks! jlc
I'm not sure as it relates specifically to XEN - but I would have a look through the /etc/rc.d directory. If it's not being turned on there, 'egrep -i iptables' /etc/init.d/* and see if it's in any startup script there. Slim chance they may be something in rc.local as well. -Peter 2008/6/9 Joseph L. Casale <JCasale at activenetwerx.com>:> I have a xen machine that has iptables turned off, and after a reboot it started behaving > badly during times when network IO rose to anything other than almost nil. Since I know > iptables makes xen unstable without some additional config and since its isolated I just > have is disabled. As a result it was the last place I looked and spent the better half of the > day chasing my tail. > > Somehow it gets turned on after a reboot, how can I deduce what is activating it? > > Thanks! > jlc > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >
Joseph L. Casale wrote on Mon, 09 Jun 2008 07:46:03 -0600:> Somehow it gets turned on after a reboot, how can I deduce what is activating it?AFAIS iptables is active all the time in CentOS 5. Deactivating the service just means that queues are empty. Starting libvirtd and creating xen machines definitely adds to the queues. Kai -- Kai Sch?tzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com