Xen users - Nov 2006 - xen 3.0.3: Problem with setting up iptables (fwbuilder)

hi,

on Friday i did a upgrade vom 3.0.2 to 3.0.3. I get in trouble with my
IPTables rule-set, generated with the fbuilder (2.0.9) tool.

I use as inside device xenbr0 (private-ip) and ppp0 as outside. After
upgrading the scripts from the install, everything blocked, after
starting the firewall. I saw, that xenbr0 does not have any ip, but
eth0, so i changed the inside device from xenbr0 to eth0. Iptraf tolds
me, that everything from the network, runs over eth0 to ppp0. But, after
restarting the firewall, with the changes, the connection was blocked
again (from inside to the xen host).

Its very confusing and there must be something, i did not realize. I
have xenbr0 (without ip), peth0(without ip too), eth0 and some vifs. If
i don''t start the firewall, the connection works, but nat. Means,
nobody
is able, to get internet working via nat. But that was, what i expected.

Now i getting everything working again, after changing the scripts from
3.0.3 back to 3.0.2, but it makes me nervous, cause i did not understand
the new setup in xen 3.0.3.

could anybody explain me, with some hinds, the new setup? Some iptables
rules, as example, would helping me too.

thanks a lot.

cu denny

-- 
Sicherheit verständlich http://www.sides.de
GnuPG Key
http://pgpkeys.pca.dfn.de:11371/pks/lookup?op=get&search=0x2A5CE192AB7D3FE0


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users