[one-users] Problem with ebtables OpenNebula

[Leong Marco]

Hi,

I have the same problem as Marwen. With this log message.
Mon Apr 11 14:50:26 2011 [TM][I]: tm_context.sh: Executed "rm -rf /var/lib/one/2603e38607a144aef3bef07283d77095".
Mon Apr 11 14:50:26 2011 [LCM][I]: New VM state is BOOT
Mon Apr 11 14:50:26 2011 [VMM][I]: Generating deployment file: /var/lib/one/165/deployment.1
Mon Apr 11 14:50:28 2011 [LCM][I]: New VM state is RUNNING
Mon Apr 11 14:50:28 2011 [HKM][I]: Hook ebtables-start successfully executed. 

However, if I do a list to ebtables, it is empty.

[oneadmin at geek root]$ sudo ebtables --list
Bridge table: filter

Bridge chain: INPUT, entries: 0, policy: ACCEPT

Bridge chain: FORWARD, entries: 0, policy: ACCEPT

Bridge chain: OUTPUT, entries: 0, policy: ACCEPT

When I run some ebtables command like this one, it works

sudo ebtables -A FORWARD -p IPv4 -j ACCEPT
this does add the rules to the table.

What can I provide to help you to debug this problem?


Leong Marco
leong.chou.kin at usj.edu.mo



On Apr 7, 2011, at 9:46 PM, marwen marwen wrote:

> 
> Hi Zaina
> 
> Yes I added oneadmin in the sudoers file of the physical host where the VM is allocated.
> And when I create the VM I specify the host where the VM will be allocated.
> But the problem is not resolved.
> Do you think that we must add this command in sudoers file of all cluster nodes. 
> oneadmin    ALL=(ALL) NOPASSWD: /sbin/ebtables *
> 
> Best regards
> Marwen
> 
> 
> From: Zaina AFOULKI <zaina.afoulki at ensi-bourges.fr>
> To: users at lists.opennebula.org
> Subject: Re: [one-users] Problem with ebtables OpenNebula
> Message-ID: <4D9CB10C.6080104 at ensi-bourges.fr>
> Content-Type: text/plain; charset=ISO-8859-1
> 
> Hi Marwen,
> 
> Did you make sure that oneadmin is added in the /etc/sudoers file with
> oneadmin    ALL=(ALL) NOPASSWD: /sbin/ebtables * ?
> 
> http://opennebula.org/documentation:archives:rel2.0:nm
> 
> --
> Zaina
> 
> 
> On 04/06/2011 06:40 PM, marwen marwen wrote:
> > Hi,
> >
> > I'm using ebtables to isolate virtual network in OpenNebula.
> > I have a problem when OpenNebula execute ebtables-kvm script.
> > In fact, the log file mention no error "Wed Apr  6 18:22:02 2011 [HKM][D]:
> > Message received: EXECUTE SUCCESS 146 ebtables-start".
> > But there are no rule added to the list rules of ebtables in the physical
> > host where the VM is allocated.
> >
> > ###############################################
> > sudo ebtables -L
> >
> > Bridge table: filter
> >
> > Bridge chain: INPUT, entries: 0, policy: ACCEPT
> >
> > Bridge chain: FORWARD, entries: 0, policy: ACCEPT
> >
> > Bridge chain: OUTPUT, entries: 0, policy: ACCEPT
> > ###############################################
> >
> > And when I execute manually the script on the worker node, the rules are
> > added.
> > In the oned.conf we put this configuration
> >
> > ###############################################
> > VM_HOOK = [
> >     name      = "ebtables-start",
> >     on        = "running",
> >     command   = "ebtables-kvm", # or ebtables-xen
> >     arguments = "one-$VMID",
> >     remote    = "yes" ]
> >
> > VM_HOOK = [
> >     name      = "ebtables-flush",
> >     on        = "done",
> >     command   = "ebtables-flush",
> >     arguments = "",
> >     remote    = "yes" ]
> > ###############################################
> >
> > can you help me to fix this problem
> >
> > Best Regards
> > Marwen
> >
> >
> >
> >
> > _______________________________________________
> > Users mailing list
> > Users at lists.opennebula.org
> > http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
> 
> 
> 
> _______________________________________________
> Users mailing list
> Users at lists.opennebula.org
> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20110411/99e4eb07/attachment-0003.htm>