[libvirt] PATCH: Fix removal of iptables FORWARD rules
Richard W.M. Jones
rjones at redhat.com
Wed May 21 15:04:21 UTC 2008
On Tue, May 20, 2008 at 09:44:01PM +0100, Daniel P. Berrange wrote:
> The previous patch to add routed networking broke the removal of one of the
> FORWARD rules at shutdown. It was adding
>
> /sbin/iptables --table filter --insert FORWARD
> --destination 192.168.122.0/255.255.255.0
> --out-interface virbr0 --match state
> --state ESTABLISHED,RELATED --jump ACCEPT
>
> But trying to remove
>
> /sbin/iptables --table filter --delete FORWARD
> --destination 192.168.122.0/255.255.255.0
> --out-interface virbr0 --jump ACCEPT
>
> which wasn't matching on the state flags. This patch makes it use the correct
> removal code
Seems OK.
Rich.
--
Richard Jones, Emerging Technologies, Red Hat http://et.redhat.com/~rjones
virt-top is 'top' for virtual machines. Tiny program with many
powerful monitoring features, net stats, disk stats, logging, etc.
http://et.redhat.com/~rjones/virt-top
More information about the libvir-list
mailing list