WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-users

[Top] [All Lists]

Re: [Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/i

from [Peter Fokkinga]

[Permanent Link][Original]

To:	xen-users@xxxxxxxxxxxxxxxxxxx
Subject:	Re: [Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially
From:	Peter Fokkinga <peter@xxxxxxxxxxx>
Date:	Sun, 02 Apr 2006 12:01:22 +0200
Delivery-date:	Sun, 02 Apr 2006 10:03:18 +0000
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<20060402091129.GC11297@xxxxxxxxxxx>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References:	<20060402094818.wd63u0a88d0k4g8w@xxxxxxxxxxxxxxxx> <20060402091129.GC11297@xxxxxxxxxxx>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent:	Internet Messaging Program (IMP) H3 (4.0.1)

Quoting Matthew Palmer <mpalmer@xxxxxxxxxxx>:

My 'very basic' on fairly similar symptoms was some default rulesthat the Xen networking scripts were inserting -- in my case, theFORWARD chain had it's policy set to DROP. Open that up and all wasgood.

All chains (checked with `ipchains -L` and `ipchains -L -t nat`)
on the domU have policy ACCEPT. There are also no rules defined.
Removing the netfilter modules (just in case) has no effect; I
can ping the dmz, but not get the daytime of the dmz from the
external system (just like before).

The dom0 doesn't have netfilter support (not compiled in, nor
as modules). Is it needed in dom0?

Regards, Peter

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-users] routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Peter Fokkinga [Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Matthew Palmer Re: [Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Peter Fokkinga <= Re: [Xen-users] routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Florian Kirstein Re: [Xen-users] routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Peter Fokkinga

Previous by Date:	[Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Matthew Palmer
Next by Date:	RE: [Xen-users] DNAT TCP checksum error, Steffen Heil
Previous by Thread:	[Xen-users] Re: routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Matthew Palmer
Next by Thread:	Re: [Xen-users] routing in xen 3.0 domU: icmp gets routed, but tcp/ip only partially, Florian Kirstein
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix