4 Aug
2008
4 Aug
'08
11:28 p.m.
On Thu, 2008-07-31 at 09:55 +0100, Daniel P. Berrange wrote:
The libvirt default networking capability will automatically setup the correct iptables rules to allow outbound NAT based connectivity for guest VMs. If this wasn't working there are two likely causes:
- You run 'service iptables stop' which blew away the rules libvirt added
This is a terrible situation; it will be a big surprise to many sysadmins and lead to lots of confusion - is this only temporary until iptables/lokkit has facilities for cleaner addition of persistent firewall rules ? David