| |
|
 |
|
 |
|
|
|
| |
|
|
xen-users
[Xen-users] Re: Xen and iptables
On Mon, Jun 04, 2007 at 01:13:30AM +0100, Frank Church wrote:
> I converted a VMWare Centos 4.4 system to run under Xen 3.0.2 on Ubuntu
> 6.06.
>
> When I try to run iptables on the Centos VM I get this error.
>
> iptables -L
> iptables v1.2.11: can't initialize iptables table `filter': iptables
> who? (do you need to insmod?)
> Perhaps iptables or your kernel needs to be upgraded.
>
> I suspect that there is something I have to do on the domU to get it
> to work or that I may have to copy something over from the domU.
As Luke has mentioned, make sure that the modules for the running domU
kernel are available in /lib/modules, and also that the module.dep file is
up to date (consider a depmod run in the VM to make sure).
Verifying that the iptables module is available and loaded is quite simple.
Run 'lsmod |grep ip_tables' and if there's any output, you've got IP tables
loaded. If not, try 'modprobe ip_tables' and make sure it doesn't give any
errors.
If you still get the same error after you've verified that the ip_tables
module is loaded, then you've probably hit my favourite glitch-of-the-week.
You're probably running a 32-bit VM userland on a 64-bit domU
kernel/hypervisor, and so the 32-bit iptables binary can't talk to your
64-bit kernel (architecture-dependent data structures, doncha know). You
need to get a 64-bit libc and dynamic loader, and get a 64-bit
/sbin/iptables and /lib/iptables/* onto your domU. I don't know how to do
that on a CentOS box, though, short of a bunch of manual scp work. I could
tell you how easy it is on a Debian/Ubuntu VM, but that wouldn't be very
helpful for you.
- Matt
--
Another Fine Product From The Nonsense Factory.
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
|
|
|
| |
|
Home