[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [fedora-virt] F-12 host, can't acquire DHCP lease in guest



On Thu, 2009-10-29 at 13:25 -0400, Andrew Overholt wrote:
> Hi,
> 
> I installed rawhide/F-12 x86_64 (network using NetworkManager) and installed
> and started libvirtd.  I then created both F-12 i686 and F-11 i686 guests which
> went fine.  However, neither guest is able to acquire a DHCP lease.
> 
> Is there some sort of configuration that I didn't do?  I don't recall having to
> do anything special with F-11 as a host.  Relevant information below.
> 
> I can file a bug if that's preferred.
> 
> Thanks,
> 
> Andrew
> 
> ------------------------------------------------------------------------
> 
> # virsh net-list --all
> Name                 State      Autostart
> -----------------------------------------
> default              active     yes
> 
> # brctl show
> bridge name	bridge id		STP enabled	interfaces
> virbr0		8000.6e8e6e10bdb6	yes		vnet0
> 							vnet1
> 
> # sysctl net.bridge.bridge-nf-call-iptables
> net.bridge.bridge-nf-call-iptables = 1

This is supposed to be zero by default in F-12:

  https://bugzilla.redhat.com/512206

> # iptables -L -v -n
> Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
>  pkts bytes target     prot opt in     out     source               destination         
> 2129K 2744M ACCEPT     all  --  *      *       0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
>     3  1070 ACCEPT     icmp --  *      *       0.0.0.0/0            0.0.0.0/0           
>     7   420 ACCEPT     all  --  lo     *       0.0.0.0/0            0.0.0.0/0           
>     0     0 ACCEPT     tcp  --  *      *       0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:22 
>  2669  335K REJECT     all  --  *      *       0.0.0.0/0            0.0.0.0/0           reject-with icmp-host-prohibited 

Looks like iptables is missing the rules libvirt starts; a 'service
libvirtd reload' should load them again, but you say you've tried that?

Does 'virsh net-destroy default' and 'virsh net-start default' followed
by a restart of the guests help?

Background on libvirt/iptables integration here:

  https://bugzilla.redhat.com/227011

Cheers,
Mark.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]