[libvirt-users] Help needed on a gentoo system after update to libvirtd 3.1.0

Marko Weber | 8000 weber at zbfmail.de
Tue Mar 7 16:53:45 UTC 2017

Am 2017-03-07 13:01, schrieb Michal Privoznik:
> On 03/07/2017 11:44 AM, Marko Weber | 8000 wrote:
>> (sorry, dont know how i put my posting into an reply to an other issue
>> before,
>>  new posting to sepearte it, big sorry)
>> Hello list,
>> i updated on a gentoo system from libvirtd 2.5 to 3.1.0
>> Now my windows machines cant access internet.
>> I did a virbr1 with virt-manager and route it to the eth0, works fine 
>> on
>> 2.5
>> Hello list,
>> anyone knows this effect after update?
>> do i have to change some more things?
>> or is this a bug?
> What is your domain configuration? What is your firewall setting? I use
> gentoo too, but hasn't experienced this. On the other hand, I don't use
> the same setting as you do.
> Michal

Hello Michal,
what do you mean with "domain config"? i can do a virsh xml dump of the 
Firewall, i dont used an nw* from libvirt, i do all via iptables & 

i paste it here
tell me if you need more

the domain:

<domain type='kvm' id='4'>
   <memory unit='KiB'>16777216</memory>
   <currentMemory unit='KiB'>16777216</currentMemory>
   <vcpu placement='static' current='2'>12</vcpu>
     <type arch='x86_64' machine='pc-i440fx-2.8'>hvm</type>
     <bootmenu enable='yes'/>
       <relaxed state='on'/>
       <vapic state='on'/>
       <spinlocks state='on' retries='8191'/>
   <cpu mode='custom' match='exact'>
     <model fallback='forbid'>Broadwell</model>
     <topology sockets='1' cores='6' threads='2'/>
     <feature policy='require' name='vme'/>
     <feature policy='require' name='ds'/>
     <feature policy='require' name='acpi'/>
     <feature policy='require' name='ss'/>
     <feature policy='require' name='ht'/>
     <feature policy='require' name='tm'/>
     <feature policy='require' name='pbe'/>
     <feature policy='require' name='dtes64'/>
     <feature policy='require' name='monitor'/>
     <feature policy='require' name='ds_cpl'/>
     <feature policy='require' name='vmx'/>
     <feature policy='require' name='smx'/>
     <feature policy='require' name='est'/>
     <feature policy='require' name='tm2'/>
     <feature policy='require' name='xtpr'/>
     <feature policy='require' name='pdcm'/>
     <feature policy='require' name='dca'/>
     <feature policy='require' name='osxsave'/>
     <feature policy='require' name='f16c'/>
     <feature policy='require' name='rdrand'/>
     <feature policy='require' name='arat'/>
     <feature policy='require' name='tsc_adjust'/>
     <feature policy='require' name='xsaveopt'/>
     <feature policy='require' name='pdpe1gb'/>
     <feature policy='require' name='abm'/>
   <clock offset='localtime'>
     <timer name='rtc' tickpolicy='catchup'/>
     <timer name='pit' tickpolicy='delay'/>
     <timer name='hpet' present='no'/>
     <timer name='hypervclock' present='yes'/>
     <suspend-to-mem enabled='no'/>
     <suspend-to-disk enabled='no'/>
     <disk type='file' device='disk'>
       <driver name='qemu' type='qcow2'/>
       <source file='/vm/windows-2016-_DC.qcow2'/>
       <target dev='vda' bus='virtio'/>
       <boot order='2'/>
       <alias name='virtio-disk0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x06' 
     <disk type='file' device='cdrom'>
       <driver name='qemu' type='raw'/>
       <target dev='hdb' bus='ide'/>
       <boot order='1'/>
       <alias name='ide0-0-1'/>
       <address type='drive' controller='0' bus='0' target='0' unit='1'/>
     <disk type='file' device='cdrom'>
       <driver name='qemu' type='raw'/>
       <source file='/store/virtio-win.iso'/>
       <target dev='hdc' bus='ide'/>
       <alias name='ide0-1-0'/>
       <address type='drive' controller='0' bus='1' target='0' unit='0'/>
     <controller type='usb' index='0' model='ich9-ehci1'>
       <alias name='usb'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x04' 
     <controller type='usb' index='0' model='ich9-uhci1'>
       <alias name='usb'/>
       <master startport='0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x04' 
function='0x0' multifunction='on'/>
     <controller type='usb' index='0' model='ich9-uhci2'>
       <alias name='usb'/>
       <master startport='2'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x04' 
     <controller type='usb' index='0' model='ich9-uhci3'>
       <alias name='usb'/>
       <master startport='4'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x04' 
     <controller type='pci' index='0' model='pci-root'>
       <alias name='pci.0'/>
     <controller type='ide' index='0'>
       <alias name='ide'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x01' 
     <controller type='virtio-serial' index='0'>
       <alias name='virtio-serial0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x05' 
     <interface type='network'>
       <mac address='52:54:00:0f:69:2b'/>
       <source network='br1' bridge='virbr1'/>
       <target dev='vnet0'/>
       <model type='virtio'/>
       <alias name='net0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x03' 
     <serial type='pty'>
       <source path='/dev/pts/1'/>
       <target port='0'/>
       <alias name='serial0'/>
     <console type='pty' tty='/dev/pts/1'>
       <source path='/dev/pts/1'/>
       <target type='serial' port='0'/>
       <alias name='serial0'/>
     <console type='pty'>
       <source path='/dev/pts/2'/>
       <target type='virtio' port='1'/>
       <alias name='console1'/>
     <channel type='unix'>
       <source mode='bind' 
       <target type='virtio' name='org.qemu.guest_agent.0' 
       <alias name='channel0'/>
       <address type='virtio-serial' controller='0' bus='0' port='1'/>
     <input type='tablet' bus='usb'>
       <alias name='input0'/>
       <address type='usb' bus='0' port='1'/>
     <input type='mouse' bus='ps2'>
       <alias name='input1'/>
     <input type='keyboard' bus='ps2'>
       <alias name='input2'/>
     <graphics type='vnc' port='5900' autoport='yes' listen=''>
       <listen type='address' address=''/>
       <model type='virtio' heads='1' primary='yes'/>
       <alias name='video0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x02' 
     <memballoon model='virtio'>
       <stats period='5'/>
       <alias name='balloon0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x07' 
     <rng model='virtio'>
       <backend model='random'>/dev/random</backend>
       <alias name='rng0'/>
       <address type='pci' domain='0x0000' bus='0x00' slot='0x08' 
   <seclabel type='none' model='none'/>
   <seclabel type='dynamic' model='dac' relabel='yes'>

networking br1 (virbr1):
and routed to existing br0

virsh # net-dumpxml br1
<network connections='2'>
   <forward dev='br0' mode='route'>
     <interface dev='br0'/>
   <bridge name='virbr1' stp='on' delay='0'/>
   <mac address='52:54:00:75:a4:2f'/>
   <domain name='br1'/>
   <ip address='' netmask=''>

you need more info?

hmm i also had an "host-bridge" defined network to br0 on my gentoo 

# ifconfig
         inet  netmask  broadcast
         ether f6:6a:1c:5a:e8:93  txqueuelen 1000  (Ethernet)
         RX packets 67984  bytes 5401548 (5.1 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 33143  bytes 45362855 (43.2 MiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
         inet  netmask  broadcast
         ether 18:66:da:88:0d:37  txqueuelen 1000  (Ethernet)
         RX packets 1080633  bytes 990840130 (944.9 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 1735305  bytes 2045606964 (1.9 GiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
         device interrupt 18

lo: flags=73<UP,LOOPBACK,RUNNING>  mtu 65536
         inet  netmask
         loop  txqueuelen 1000  (Local Loopback)
         RX packets 607097  bytes 1883581534 (1.7 GiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 607097  bytes 1883581534 (1.7 GiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

tap0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
         ether f6:6a:1c:5a:e8:93  txqueuelen 100  (Ethernet)
         RX packets 67984  bytes 6353324 (6.0 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 85353  bytes 48259222 (46.0 MiB)
         TX errors 0  dropped 188 overruns 0  carrier 0  collisions 0

virbr1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
         inet  netmask  broadcast
         ether 52:54:00:75:a4:2f  txqueuelen 1000  (Ethernet)
         RX packets 178002  bytes 54585053 (52.0 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 241542  bytes 899962475 (858.2 MiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

vnet0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
         ether fe:54:00:0f:69:2b  txqueuelen 1000  (Ethernet)
         RX packets 3692  bytes 3461678 (3.3 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 14142  bytes 1201183 (1.1 MiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

vnet1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
         ether fe:54:00:0a:34:1e  txqueuelen 1000  (Ethernet)
         RX packets 79661  bytes 18343744 (17.4 MiB)
         RX errors 0  dropped 0  overruns 0  frame 0
         TX packets 112365  bytes 437957368 (417.6 MiB)
         TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

or do i have to set via virt-manager the br1 (virbr1) routed to eth0?



