[libvirt] [PATCH] news: Document kernel requirements for virtual networks
After 7431b3eb9a05068e4b libvirt requires "filter", "nat" and "mangle" tables to exist for both IPv4 and IPv6. This fact was missed in the news.xml and since we don't have any better place to advertise that let's update old news. Signed-off-by: Michal Privoznik <mprivozn@redhat.com> --- docs/news.xml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/docs/news.xml b/docs/news.xml index 81466c3d55..8321ed8c43 100644 --- a/docs/news.xml +++ b/docs/news.xml @@ -146,7 +146,9 @@ Historically firewall rules for virtual networks were added straight into the base chains. This works but has a number of bugs and design limitations. To address them, libvirt now puts - firewall rules into its own chains. + firewall rules into its own chains. Note that with this change the + <code>filter</code>, <code>nat</code> and <code>mangle</code> tables + are required for both <code>IPv4</code> and <code>IPv6</code>. </description> </change> <change> -- 2.19.2
On 3/11/19 8:25 AM, Michal Privoznik wrote:
After 7431b3eb9a05068e4b libvirt requires "filter", "nat" and "mangle" tables to exist for both IPv4 and IPv6. This fact was missed in the news.xml and since we don't have any better place to advertise that let's update old news.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com> --- docs/news.xml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-)
Reviewed-by: John Ferlan <jferlan@redhat.com> John
On 3/17/19 3:36 PM, John Ferlan wrote:
On 3/11/19 8:25 AM, Michal Privoznik wrote:
After 7431b3eb9a05068e4b libvirt requires "filter", "nat" and "mangle" tables to exist for both IPv4 and IPv6. This fact was missed in the news.xml and since we don't have any better place to advertise that let's update old news.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com> --- docs/news.xml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-)
Reviewed-by: John Ferlan <jferlan@redhat.com>
John
Thanks, but now that Dan pushed his patch (686803a1a2e1e06) maybe I need to refine this. Or not push it at all. Michal
On Sat, Mar 23, 2019 at 07:17:16AM +0100, Michal Prívozník wrote:
On 3/17/19 3:36 PM, John Ferlan wrote:
On 3/11/19 8:25 AM, Michal Privoznik wrote:
After 7431b3eb9a05068e4b libvirt requires "filter", "nat" and "mangle" tables to exist for both IPv4 and IPv6. This fact was missed in the news.xml and since we don't have any better place to advertise that let's update old news.
Signed-off-by: Michal Privoznik <mprivozn@redhat.com> --- docs/news.xml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-)
Reviewed-by: John Ferlan <jferlan@redhat.com>
John
Thanks, but now that Dan pushed his patch (686803a1a2e1e06) maybe I need to refine this. Or not push it at all.
We could probably refine it, since the requirement for "mangle" all the time is potentially surprising. Regards, Daniel -- |: https://berrange.com -o- https://www.flickr.com/photos/dberrange :| |: https://libvirt.org -o- https://fstop138.berrange.com :| |: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|
participants (4)
-
Daniel P. Berrangé -
John Ferlan -
Michal Privoznik -
Michal Prívozník