[fedora-virt] F-12 host, can't acquire DHCP lease in guest
Mark McLoughlin
markmc at redhat.com
Thu Oct 29 17:45:56 UTC 2009
On Thu, 2009-10-29 at 13:25 -0400, Andrew Overholt wrote:
> Hi,
>
> I installed rawhide/F-12 x86_64 (network using NetworkManager) and installed
> and started libvirtd. I then created both F-12 i686 and F-11 i686 guests which
> went fine. However, neither guest is able to acquire a DHCP lease.
>
> Is there some sort of configuration that I didn't do? I don't recall having to
> do anything special with F-11 as a host. Relevant information below.
>
> I can file a bug if that's preferred.
>
> Thanks,
>
> Andrew
>
> ------------------------------------------------------------------------
>
> # virsh net-list --all
> Name State Autostart
> -----------------------------------------
> default active yes
>
> # brctl show
> bridge name bridge id STP enabled interfaces
> virbr0 8000.6e8e6e10bdb6 yes vnet0
> vnet1
>
> # sysctl net.bridge.bridge-nf-call-iptables
> net.bridge.bridge-nf-call-iptables = 1
This is supposed to be zero by default in F-12:
https://bugzilla.redhat.com/512206
> # iptables -L -v -n
> Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
> pkts bytes target prot opt in out source destination
> 2129K 2744M ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
> 3 1070 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0
> 7 420 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
> 0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
> 2669 335K REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
Looks like iptables is missing the rules libvirt starts; a 'service
libvirtd reload' should load them again, but you say you've tried that?
Does 'virsh net-destroy default' and 'virsh net-start default' followed
by a restart of the guests help?
Background on libvirt/iptables integration here:
https://bugzilla.redhat.com/227011
Cheers,
Mark.
More information about the Fedora-virt
mailing list