[prev in list] [next in list] [prev in thread] [next in thread] 

List:       netfilter
Subject:    libnetfilter_queue in VM
From:       "U.Mutlu" <for-gmane () mutluit ! com>
Date:       2012-01-22 20:11:23
Message-ID: jfhqhb$n2n$2 () dough ! gmane ! org
[Download RAW message or body]

Hello,

has any of the developers, testers or users tested the libnetfilter_queue
library under openvz VM's?

When I boot my debian system with an openvz kernel then this library
works only on the host node (HN), but not in the virtual machines (VM),
even after granting all possible capabilities like NET_ADMIN etc. to the VM.

In the VM the call to nfq_open() succeeds, but nfq_unbind_pf() and
nfq_bind_pf() fail by each returning -1. What do you think could be
the reason it's failing? Could it maybe a Selinux-issue?

I would like to ask if any of you has successfully tested/used this library in VM's?

Regards,
U.Mutlu


In netfilter.announce Pablo Neira Ayuso wrote, On 2012-01-02 20:58:
> Hi!
>
> The Netfilter project proudly presents:
>
>          libnetfilter_queue 1.0.1
>
> libnetfilter_queue is a userspace library providing an API to packets
> that have been queued by the kernel packet filter.
>
> See ChangeLog that comes attached to this email for more details.
>
> You can download it from:
>
> http://www.netfilter.org/projects/libnetfilter_queue/downloads.html
> ftp://ftp.netfilter.org/pub/libnetfilter_queue/
>
> Have fun!

--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[prev in list] [next in list] [prev in thread] [next in thread]