similar to: [Bridge] The problem of bridge+netfilter+nat

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Apparently introduced in the latest stable set; I am not sure if this is a right fix but given that bridge parent already exists at this point it was rather silly to fetch it again. - -regards - -andrey Subject: [PATCH] [2.6.15.4] Fix has_bridge_parent undefined with CONFIG_NETFILTER_DEBUG This changes br_nf_post_routing to use realoutdev in

Hi all, The patch below does four trivial changes and one big change Trivial changes, these are all in br_netfilter.c: - check ar_pln==4 when giving bridged ARP packets to arptables - delete unnecessary if in br_nf_local_in - add more logging for the "Argh" message - add some brag-comments in the file head comment Big change: let {ip,arp}tables see VLAN tagged {I,AR}P packets. This

Hi, I have 2 servers which are connected to a gateway machine. The gateway and one server are running Linux 2.6.16.2, while the third machine is running 2.6.16.5. The two ethernet ports on the gateway which are connected to the servers are combined into a single ethernet bridge device. Ever since 2.6.16, I have noticed that I can no longer cross-mount the two servers' /home directories via

On Mon, Jun 8, 2020 at 5:09 AM Daniel P. Berrangé <berrange@redhat.com> wrote: > > On Fri, Jun 05, 2020 at 01:27:08PM -0400, Justin Stephenson wrote: > > Hi, > > > > I recently installed a fresh install of Fedora 32 and I am having > > trouble with my virtual machine networking, I can ssh and connect into > > my guest VMs from my host, but the guest VMs

Looks like the GSO is involved? I got this while running Dom0 only (no guests), with a BOINC/Rosetta@home application running on all 4 cores. changeset: 10649:8e55c5c11475 Build: x86_32p (pae). ------------[ cut here ]------------ kernel BUG at net/core/dev.c:1133! invalid opcode: 0000 [#1] SMP CPU: 0 EIP: 0061:[<c04dceb0>] Not tainted VLI EFLAGS: 00210297 (2.6.16.13-xen

On Fri, 07 Jan 2005 17:05:59 +0000 David Woodhouse <dwmw2@infradead.org> wrote: > On Sat, 2004-12-18 at 08:50 +0100, Andi Kleen wrote: > > It's not really an oops, just a warning that stack space got quiet > > tight. > > > > The problem seems to be that the br netfilter code is nesting far too > > deeply and recursing several times. Looks like a design

Does someone have a link to a how-to-do-it with firewalld, not "disable firewalld and use iptables"? mark

Hi, I recently installed a fresh install of Fedora 32 and I am having trouble with my virtual machine networking, I can ssh and connect into my guest VMs from my host, but the guest VMs cannot ping out to the internet. I am using the "default" NAT virtual network, the interesting thing is I have made no configuration changes on my host or in the guest VMs, simply created and installed

On 04/02/2016 05:20 PM, Laine Stump wrote: > You say they can talk among containers on the same host, and with their > own host (I guess you mean the virtual machine that is hosting the > containers), but not to containers on another host. Can the containers > communicate outside of the host at all? If not, perhaps the problem is > iptables rules for the bridge device the containers

Hello, I have a linux box sitting between (and bridging/firewalling) 2 LAN segments. I''m using Bridge/Netfilter/IMQ/tc(htb) to control (shape) mail/web traffic that traverses the 2 networks. The networks also have some VLAN tagged traffic flying around. My linux box behaves OK with VLAN traffic except that the shaping doesn''t seem to work. Normal http shapes alright but as soon

Hi, I found this block of code in br_dev_queue_xmit() @ br_forward.c, after applying 'netfilter' patch for 2.4.21 kernel Can someone explain what this block of code is doin? #ifdef CONFIG_NETFILTER if (skb->nf_bridge) memcpy(skb->data - 16, skb->nf_bridge->hh, 16); #endif 1. What is 16 bytes here...? Ethernet hdr is just 14 bytes 2. Why the ethernet

On 04/07/2016 09:50 AM, Peter Steele wrote: > On 04/02/2016 05:20 PM, Laine Stump wrote: >> You say they can talk among containers on the same host, and with their >> own host (I guess you mean the virtual machine that is hosting the >> containers), but not to containers on another host. Can the containers >> communicate outside of the host at all? If not, perhaps the

Hi, after I saw that my machine was having problems to forward more than 200 Mbit/s, I decided to profile the kernel and find out the hotspots. This is what I found: [...] 1028 bridge.ko __br_forward 1033 bridge.ko br_nf_forward_finish 1074 bridge.ko ip_sabotage_in 1119 ebtable_filter.ko ebt_hook 1177 sky2.ko

Hi, I have 8 ethernet cards installed. Is it possible to use eth0-eth6 as the net interface for shorewall and eth1 as the lan network? Thanks. sangprabv sangprabv@gmail.com ------------------------------------------------------------------------------

I can see from different post that if working with sr-iov, i should work with vlan Is this an obligation to work with vlan if working with sr-iov? If not according to which parameter will the different vf get the traffic. Let's say i declare max_vfs=7, how will the traffic be seperated between the vm? However till i get an answer i tried to work with vlan And i still don't get

On 01/27/2017 06:08 AM, Karel Hendrych wrote: > Have you tried to eliminate all power management features all over? I've been trying to find and disable all power management features but having relatively little luck with that solving the problems. Stabbing the the dark I've tried different ACPI settings, including completely disabling it, disabling CPU frequency scaling, and setting

Hi all, I have one bridge system (used for controlling bandwidth) connected to three different DSL ISP provider. I have the following setup below: - +-------------+ | br0 | | -> eth1 | -> DSL_1 | -> eth2 | +-------------+ | br1 | | -> eth3 | -> DSL_2 | -> eth4 | +-------------+ | br2 | | -> eth5

On 28/01/17 05:21, Kevin Stange wrote: > On 01/27/2017 06:08 AM, Karel Hendrych wrote: >> Have you tried to eliminate all power management features all over? > > I've been trying to find and disable all power management features but > having relatively little luck with that solving the problems. Stabbing > the the dark I've tried different ACPI settings, including

Hello CentOS Xen Heroes, Yesterday, I have installed testing kernel 4.9.23-26.el6.x86_64 from virt-xen-testing repo. It crashed today morning. Hardware is a pretty ancient, testing machine (CO6 PV guests only), but had no problems yet. It was stable on 4.9*, including testing 4.9.15-22.el6.x86_64 Console output: [59826.069427] general protection fault: 0000 [#1] SMP [59826.069463] Modules

On 03/16/2015 01:07 PM, Lentes, Bernd wrote: > Bernd wrote: > >> Laine wrote: >> >>> -----Original Message----- >>> From: sendmail [mailto:justsendmailnothingelse@gmail.com] On >> Behalf Of >>> Laine Stump >>> Sent: Monday, March 16, 2015 4:12 PM >>> To: libvirt-users@redhat.com >>> Cc: Lentes, Bernd >>>