[libvirt-users] failing connections w/ virt-manager

Stefan G. Weichinger lists at xunil.at
Fri Oct 4 05:12:34 UTC 2013 

Greetings ...

I already spent quite some time to debug this ...

See the thread on gentoo-user ml for reference:

http://permalink.gmane.org/gmane.linux.gentoo.user/270091

basically I get dropped connections when I try to edit a VM via
virt-manager. Tested from my gentoo workstation and a fresh ubuntu
installation inside a VM at my office.

The server is a new and shiny gentoo box with (gentoo release-numbers):

libvirt-1.1.2-r3
qemu-1.5.3
openssh-5.9_p1-r4
...

64bit, lots of RAM and CPUs .. installed last week ... so no obvious
cruft on there.

plain ssh sessions work fine for me.

I access the server over an IPSEC-VPN terminated on my pfsense-router
and on the customers side there is a firewall. This firewall allows full
access for my private subnet, TCP/UDP ports 1:65535 ... so there should
be no restrictions.

Another issue: the server runs with systemd-204-r1 ... maybe important.

# systemctl status libvirtd
libvirtd.service - Virtualization daemon
   Loaded: loaded (/usr/lib64/systemd/system/libvirtd.service; enabled)
   Active: active (running) since Do 2013-10-03 17:39:37 CEST; 13h ago
 Main PID: 1242 (libvirtd)
   CGroup: name=systemd:/system/libvirtd.service
           └─1242 /usr/sbin/libvirtd --listen

Okt 03 17:39:38 jupiter libvirtd[1242]: [251B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: [254B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: [301B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: firewall tools were not found or
cannot be used
Okt 03 17:39:41 jupiter libvirtd[1242]: [338B blob data]
Okt 03 17:39:41 jupiter libvirtd[1242]: failed to add iptables rule to
allow DHCP requests from 'virbr0'
Okt 03 17:41:07 jupiter libvirtd[1242]: No response from client
0x7fe8b0c19450 after 5 keepalive messages in 31 seconds
Okt 04 06:35:28 jupiter libvirtd[1242]: No response from client
0x7fe8b0c171a0 after 5 keepalive messages in 32 seconds
Okt 04 06:40:05 jupiter libvirtd[1242]: No response from client
0x7fe8b0c164e0 after 5 keepalive messages in 31 seconds
Okt 04 06:58:36 jupiter libvirtd[1242]: No response from client
0x7fe8b0c17050 after 5 keepalive messages in 31 seconds


What to install for the "firewall tools"? Gentoo didn't pull anything
related ... Is that relevant?

What about these keepalive messages, I assume this is responsible for my
failing virt-manager-connections.

Thanks for any help on this, I am quite stuck here already ...

Stefan

More information about the libvirt-users mailing list