WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Xen-users] Re: Xen bridge swallowing packets?

from [Geoff Meakin Acid] [Permanent Link][Original]
To: Geoff Meakin Acid <geoffmeakin@xxxxxxxxxxxxxxxxxxxxxx>
Subject: [Xen-users] Re: Xen bridge swallowing packets?
From: Geoff Meakin Acid <geoffmeakin@xxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 18 Aug 2011 00:33:31 +0100
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 17 Aug 2011 16:34:22 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <C818368E-C8DA-4511-85C6-0067CDD52F09@xxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <C818368E-C8DA-4511-85C6-0067CDD52F09@xxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Solved

--

Geoff Meakin




On 18 Aug 2011, at 00:19, Geoff Meakin Acid wrote:

Hi, can anyone help me with this (weirdest problem Ive ever seen)

I have the latest Debian Squeeze vendor xen dom0 kernel and 1 domU succesfully installed on it using bridged networking. From dom0, I can ping/telnet etc. to anywhere on the web

WHAT IS WORKING >
* From my domU I can successfully ping google.com and telnet to 8.8.8.8:53 (googles dns server)
* tcpdump vif1.0 and I see SYNs and ACKs
* tcpdump peth0 and I see corresponding SYNs and ACKs

WHAT IS NOT WORKING >
* However I cannot telnet to google.com:80 - connection refused
* When I TCPDump vif1.0 I see SYNs followed by RST,ACK sent from dom0
* There are no packets leaving or entering on peth0 at all - so they dont get out onto the network

All my iptables rules are all ACCEPT rules, and the policys are all ACCEPT. IE there is no iptables rule in either INPUT, FORWARD, OUTPUT, PREROUTING or POSTROUTING that does anything other than accept. This is the case for both dom0 and domU

Can anyone shed any light on this mysterious behaviour? Why would googles dns server work but http server not? Is there something I've forgotten?


--

Geoff Meakin






_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] XCP GUI management, Grant McWilliams
Next by Date:  Re: [Xen-users] XCP GUI management, Outback Dingo
Previous by Thread:  [Xen-users] Xen bridge swallowing packets?, Geoff Meakin Acid
Next by Thread:  [Xen-users] Re: Xen bridge swallowing packets?, Simon Hobson
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy