nova.git - OpenStack's nova patches.

diff options

author	Mark McLoughlin <markmc@redhat.com>	2011-09-20 09:37:07 +0000
committer	Tarmac <>	2011-09-20 09:37:07 +0000
commit	086a2184bc29880ce97e826fc43656a7eec54986 (patch)
tree	c20b26e2cc6d3ad51f41d0bb90aaeb4a05a3bfee /bin/stack
parent	0e0a2e7fc8f98c7ef9c85e466dae985e5a529238 (diff)
parent	a1229e5dbc3c03887dec49d93f55a0e4f60d96be (diff)
download	nova-086a2184bc29880ce97e826fc43656a7eec54986.tar.gz nova-086a2184bc29880ce97e826fc43656a7eec54986.tar.xz nova-086a2184bc29880ce97e826fc43656a7eec54986.zip

Add iptables filter rules for dnsmasq (lp:844935)

On Fedora, the default policy for the INPUT chain in the filter table is DROP. This means that DHCP and DNS request packets from the guest get dropped. Add these rules to allow the traffic through: $> sudo iptables -t filter -A nova-network-INPUT -i br0 -p udp -m udp --dport 67 -j ACCEPT $> sudo iptables -t filter -A nova-network-INPUT -i br0 -p tcp -m tcp --dport 67 -j ACCEPT $> sudo iptables -t filter -A nova-network-INPUT -i br0 -p udp -m udp --dport 53 -j ACCEPT $> sudo iptables -t filter -A nova-network-INPUT -i br0 -p tcp -m tcp --dport 53 -j ACCEPT

Diffstat (limited to 'bin/stack')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: