On Thu, 2009-10-29 at 13:25 -0400, Andrew Overholt wrote: > Hi, > > I installed rawhide/F-12 x86_64 (network using NetworkManager) and installed > and started libvirtd. I then created both F-12 i686 and F-11 i686 guests > which > went fine. However, neither guest is able to acquire a DHCP lease. > > Is there some sort of configuration that I didn't do? I don't recall having > to > do anything special with F-11 as a host. Relevant information below. > > I can file a bug if that's preferred. > > Thanks, > > Andrew > > ------------------------------------------------------------------------ > > # virsh net-list --all > Name State Autostart > ----------------------------------------- > default active yes > > # brctl show > bridge name bridge id STP enabled interfaces > virbr0 8000.6e8e6e10bdb6 yes vnet0 > vnet1 > > # sysctl net.bridge.bridge-nf-call-iptables > net.bridge.bridge-nf-call-iptables = 1
This is supposed to be zero by default in F-12: https://bugzilla.redhat.com/512206 > # iptables -L -v -n > Chain INPUT (policy ACCEPT 0 packets, 0 bytes) > pkts bytes target prot opt in out source > destination > 2129K 2744M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 > state RELATED,ESTABLISHED > 3 1070 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 > > 7 420 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 > > 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 > state NEW tcp dpt:22 > 2669 335K REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 > reject-with icmp-host-prohibited Looks like iptables is missing the rules libvirt starts; a 'service libvirtd reload' should load them again, but you say you've tried that? Does 'virsh net-destroy default' and 'virsh net-start default' followed by a restart of the guests help? Background on libvirt/iptables integration here: https://bugzilla.redhat.com/227011 Cheers, Mark. _______________________________________________ Fedora-virt mailing list [email protected] https://www.redhat.com/mailman/listinfo/fedora-virt
