'Re: How to troubleshoot'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       firewalld-users
Subject:    Re: How to troubleshoot
From:       Ed Greshko <ed.greshko () greshko ! com>
Date:       2020-06-26 0:30:46
Message-ID: 62280ef7-2df3-09b5-ceea-1b21be34b6b9 () greshko ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


On 2020-06-26 03:00, Eric Garver wrote:
> See here: 
> https://wiki.libvirt.org/page/Networking#Forwarding_Incoming_Connections

Oh, I reread this and it finally dawned on me....

"By default, guests that are connected via a virtual network with <forward \
mode='nat'/> can make any outgoing network connection they like. Incoming connections \
are allowed from the host, and from other guests connected to the same libvirt \
network, but all other incoming connections are blocked by iptables rules."

So, I changed the mode to "route" and I get the behavior I need for all the VM's and \
IPv4.

So....thanks once again.


[Attachment #5 (text/html)]

<html>
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
  </head>
  <body>
    <div class="moz-cite-prefix">On 2020-06-26 03:00, Eric Garver wrote:<br>
    </div>
    <blockquote type="cite"
      cite="mid:20200625190057.lbdwqbwusiy3rm4d@egarver">
      <pre class="moz-quote-pre" wrap="">See here: 
<a class="moz-txt-link-freetext" \
href="https://wiki.libvirt.org/page/Networking#Forwarding_Incoming_Connections" \
moz-do-not-send="true">https://wiki.libvirt.org/page/Networking#Forwarding_Incoming_Connections</a></pre>
  </blockquote>
    <br>
    <font size="+1">Oh, I reread this and it finally dawned on me....<br>
      <br>
      "By default, guests that are connected via a virtual network with
      &lt;forward mode='nat'/&gt; can make any outgoing network
      connection they like. Incoming connections are allowed from the
      host, and from other guests connected to the same libvirt network,
      but all other incoming connections are blocked by iptables rules."<br>
      <br>
      So, I changed the mode to "route" and I get the behavior I need
      for all the VM's and IPv4.<br>
      <br>
      So....thanks once again.<br>
    </font>
  </body>
</html>


[Attachment #6 (text/plain)]

_______________________________________________
firewalld-users mailing list -- firewalld-users@lists.fedorahosted.org
To unsubscribe send an email to firewalld-users-leave@lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedorahosted.org/archives/list/firewalld-users@lists.fedorahosted.org


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic