Displaying 3 results from an estimated 3 matches for "tradititionally".
Did you mean:
traditionally
2020 Jul 23
2
Re: Routed network can't reach outside network
Hi Daniel,
First of all, awfully sorry for replying so late. Unfortunately your reply
had gone to the Spam drawer...
Also, I'm answering from Gmail's webmail which IIRC only allows for 'quote
original post below'. So please forgive me for not following the proper
netiquette of 'quote original post above'.
> Is net.ipv4.ip_forward set to 0 ?
>
>
I assume
2020 Jul 23
0
Re: Routed network can't reach outside network
...from the KVM host and
> right now I can't.
Yep, so that suggests a more fundamental problem with the KVM host
config.
Since ip_forward is confirmed as set to 1, I feel the most likely problem
is something related to the firewall rules.
Libvirt will create iptables rules to allow traffic. Tradititionally
this would have been sufficient, in iptables all rules are in the single
set of global tables.
If your OS distro has enabled "nft" to replace iptables though, things
become more tricky. In nft world there is no single set of global tables.
Any app using nft can define its own top level t...
2020 Jul 23
2
Re: Routed network can't reach outside network
...te with the
VM's.
Yep, so that suggests a more fundamental problem with the KVM host
> config.
>
> Since ip_forward is confirmed as set to 1, I feel the most likely problem
> is something related to the firewall rules.
>
> Libvirt will create iptables rules to allow traffic. Tradititionally
> this would have been sufficient, in iptables all rules are in the single
> set of global tables.
>
> If your OS distro has enabled "nft" to replace iptables though, things
> become more tricky. In nft world there is no single set of global tables.
> Any app using nft c...