Displaying 3 results from an estimated 3 matches for "de7e2638".
2013 Jul 15
2
Re: The firewall just doesn't make any sense
...> <filter name='test-eth0' chain='root'>
> <rule action='drop' direction='in' priority='900'>
> <all state='NEW'/>
> </rule>
> </filter>
Generates the following iptables rules: https://up.tao.at/u/DE7E2638.txt
...and will not filter anything.
> <filter name='test-eth0' chain='root'>
> <rule action='accept' direction='in' priority='500'>
> <tcp srcipaddr='192.168.17.127' dstportstart='22'/>
> </rule>...
2013 Jul 15
0
Re: The firewall just doesn't make any sense
...t-eth0' chain='root'>
> > <rule action='drop' direction='in' priority='900'>
> > <all state='NEW'/>
> > </rule>
> > </filter>
>
> Generates the following iptables rules: https://up.tao.at/u/DE7E2638.txt
>
> ...and will not filter anything.
NB 95% of the rules libvirt creates are done at the ebtables
level rather than iptables/ip6tables.
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://vir...
2013 Jul 08
6
Getting nwfilter to work on Debian Wheezy
Hi,
I'm trying to configure nwfilter for KVM, but so far I haven't managed
to figure out a working configuration.
Network setup: The dom0 (Debian 7.1, kernel 3.2.46-1, libvirt 0.9.12) is
connected via eth0, part of the external subnet 192.168.17.0/24, and has
an additional subnet 192.168.128.160/28 routed to its main address
192.168.17.125.
The host's subnet is configured as bridge