This series moves all libvirt rules into separate chains: https://www.redhat.com/archives/libvir- list/2018-November/msg00018.html
This makes it practical to install rules ahead of libvirt's rules in iptables default chains, without risk of libvirt constantly inserting more rules in front. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to ufw in Ubuntu. https://bugs.launchpad.net/bugs/595501 Title: iptables rules for NAT may break ufw setups Status in libvirt: Won't Fix Status in libvirt package in Ubuntu: Invalid Status in ufw package in Ubuntu: Triaged Bug description: Hi there If one tries to use libvirt vms with a NATed network, libvirtd will insert iptables rules before the earliest ufw rules (ufw-before- forward) in the FORWARD chain, and so breaks ufw semantics. It would be nice if libvirt could have a special handling for the rules if ufw is present. Thanks! ProblemType: Bug DistroRelease: Ubuntu 10.04 Package: libvirt-bin 0.7.5-5ubuntu27 ProcVersionSignature: Ubuntu 2.6.32-22.36-server 2.6.32.11+drm33.2 Uname: Linux 2.6.32-22-server x86_64 Architecture: amd64 Date: Thu Jun 17 16:10:39 2010 ProcEnviron: PATH=(custom, user) LANG=en_US.UTF-8 SHELL=/bin/zsh SourcePackage: libvirt To manage notifications about this bug go to: https://bugs.launchpad.net/libvirt/+bug/595501/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
