How do are you doing that? Creating a group didn't adds anything in
FORWARD chain. And linux netfilter is forwarding all packets from one
bridge to the other (I am using the host as a router for the
bridges).
The idea is to create a group with all rules you want to apply, for example:
# cat
This patch breaks regression tests for me:
# make check
test-unconfigured/tests line 3: { to = 'vm100', action = 'ACCEPT' }
test failed: missing dport at ../src/PVE/FirewallSimulator.pm line 154, GEN82
line 3.
___
pve-devel mailing list
How do are you doing that? Creating a group didn't adds anything in
FORWARD chain. And linux netfilter is forwarding all packets from one
bridge to the other (I am using the host as a router for the
bridges).
2015-05-10 17:04 GMT+02:00 Dietmar Maurer diet...@proxmox.com:
*guests in vmbr1 are
I noticed that :
* The command clustat does not work
We do not use redhat-cluster tools anymore.
* In the dashbord : Datacenter --- Sammary : displays nothing.
known bug
* installing ksm -control- daemon never works, it crashes
known bug
I installed glusterfs for nfs, everything works.
hi,
I recreated my POC . I modified the root account in sshd.conf . Cluster
creation works :
root@pve-ceph1:/home/moula# pvecm status
Quorum information
--
Date: Sun May 10 06:48:01 2015
Quorum provider: corosync_votequorum
Nodes:3
Node ID:
Example:
the host has several internal bridges:
* vmbr0: x.x.x.x that contains eth0
* vmbr1: 10.1.1.0/24 : this bridge has the front VMs
* vmbr2: 10.1.2.0/24 : this bridge has the back VMs
vmbr1 and vmbr2 are not connected on an external switch
I use kvm guests.
*guests in vmbr1 are allowed to
*guests in vmbr1 are allowed to receive external traffic only on port 80
*guests in vmbr2 are allowed only to receive only traffic on mysql
port from 10.1.1.0/24
set FORWARDING policy to REJECT or DROP
add rules:
* chain FORWARD from any to 10.1.1.0/24 port tcp/80 accept
* chain FORWARD
