[fedora-virt] is libvirtd breaking iptables in Fedora 12?
Daniel Sanabria
sanabria.d at gmail.com
Tue Jan 26 21:21:57 UTC 2010
Thanks Tom, Justin,
Bug #227011 explains what I'm experiencing.
This technology has great potential to be used in mission-critical systems,
but issues like this one might be holding back its success.
I hope a suitable solution can be found soon ...
Thanks again,
Daniel
2010/1/25 Justin M. Forbes <jmforbes at linuxtx.org>
> On Mon, Jan 25, 2010 at 07:58:05PM +0000, Daniel Sanabria wrote:
> > Hi All,
> >
> > I noticed that if I turn on the libvirtd service via chkconfig it ends up
> > breaking my iptables by adding duplicated rules.
> >
>
>
> >
> > Has anyone experienced this? Is there another file that libvirtd uses to
> > manipulate iptables?
> >
>
> libvirt has no sane was of integrating with iptables
>
> We simply need a way to say to iptables "we've added these rules, please
> load them when you restart" without overwriting the current configuration.
> We also need lokkit/system-config-firewall to not overwrite these rules
> when
> the user modifies the configuration.
>
> The whole sorry saga is well documented in bug #227011
>
>
> Justin
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/virt/attachments/20100126/65129bc3/attachment.html
More information about the virt
mailing list