Il 13/01/14 12:06, Gao Yongwei ha scritto:
plz take a closer look at my script, and have a real try with it.
Plz next time share with me that I'm missing the "&" ;).
So _that_ was the suggestion, and it actually works, thanks!
Now, generally speaking, we just need a way to do it which will n
Il 13/01/14 04:06, Gao Yongwei ha scritto:
how about this daemon hook script?
#!/bin/bash
#
insert_rule() {
sleep 2
iptables -t nat -D CUSTOM_RULE
iptables -t nat -I CUSTOM_RULE
}
[...]
Thanks, I already tried inserting a delay with "sleep" but it didn't
change anything, as th
Il 09/01/14 13:40, Laine Stump ha scritto:
you asked for "best", not "ideal" :-) Aside from eliminating all use of
;)
solve by itself. But that same paragraph also tells you how to have the
iptables service signal libvirt to reload its iptables rules.
Sorry, what do you mean? I'm not able
Il 09/01/14 11:38, ZeroUno ha scritto:
Il 08/01/14 16:17, Laine Stump ha scritto:
http://wiki.libvirt.org/page/Networking#Forwarding_Incoming_Connections
interesting!), AFAICT this might help with adding rules to the NAT
table, which was the first part of my question, but does not help with
Il 08/01/14 16:17, Laine Stump ha scritto:
On 01/08/2014 01:43 PM, ZeroUno wrote:
Also, regarding the "iptables restart problem" described in the last
paragraph at <http://libvirt.org/firewall.html>, is there really no
acceptable way to make libvirt add its rules back au
Hi,
I'm using libvirt to manage some VMs on a CentOS host, and I need some
custom iptables rules to always be in place for some communications to
happen, e.g. between the VMs and the outside world in both directions.
Some of these rules need to be at the top of the iptables chain,
otherwise t
