[one-users] Problem with ebtables OpenNebula
Leong Marco
leong.chou.kin at usj.edu.mo
Mon Apr 11 00:13:24 PDT 2011
Hi,
I have the same problem as Marwen. With this log message.
Mon Apr 11 14:50:26 2011 [TM][I]: tm_context.sh: Executed "rm -rf /var/lib/one/2603e38607a144aef3bef07283d77095".
Mon Apr 11 14:50:26 2011 [LCM][I]: New VM state is BOOT
Mon Apr 11 14:50:26 2011 [VMM][I]: Generating deployment file: /var/lib/one/165/deployment.1
Mon Apr 11 14:50:28 2011 [LCM][I]: New VM state is RUNNING
Mon Apr 11 14:50:28 2011 [HKM][I]: Hook ebtables-start successfully executed.
However, if I do a list to ebtables, it is empty.
[oneadmin at geek root]$ sudo ebtables --list
Bridge table: filter
Bridge chain: INPUT, entries: 0, policy: ACCEPT
Bridge chain: FORWARD, entries: 0, policy: ACCEPT
Bridge chain: OUTPUT, entries: 0, policy: ACCEPT
When I run some ebtables command like this one, it works
sudo ebtables -A FORWARD -p IPv4 -j ACCEPT
this does add the rules to the table.
What can I provide to help you to debug this problem?
Leong Marco
leong.chou.kin at usj.edu.mo
On Apr 7, 2011, at 9:46 PM, marwen marwen wrote:
>
> Hi Zaina
>
> Yes I added oneadmin in the sudoers file of the physical host where the VM is allocated.
> And when I create the VM I specify the host where the VM will be allocated.
> But the problem is not resolved.
> Do you think that we must add this command in sudoers file of all cluster nodes.
> oneadmin ALL=(ALL) NOPASSWD: /sbin/ebtables *
>
> Best regards
> Marwen
>
>
> From: Zaina AFOULKI <zaina.afoulki at ensi-bourges.fr>
> To: users at lists.opennebula.org
> Subject: Re: [one-users] Problem with ebtables OpenNebula
> Message-ID: <4D9CB10C.6080104 at ensi-bourges.fr>
> Content-Type: text/plain; charset=ISO-8859-1
>
> Hi Marwen,
>
> Did you make sure that oneadmin is added in the /etc/sudoers file with
> oneadmin ALL=(ALL) NOPASSWD: /sbin/ebtables * ?
>
> http://opennebula.org/documentation:archives:rel2.0:nm
>
> --
> Zaina
>
>
> On 04/06/2011 06:40 PM, marwen marwen wrote:
> > Hi,
> >
> > I'm using ebtables to isolate virtual network in OpenNebula.
> > I have a problem when OpenNebula execute ebtables-kvm script.
> > In fact, the log file mention no error "Wed Apr 6 18:22:02 2011 [HKM][D]:
> > Message received: EXECUTE SUCCESS 146 ebtables-start".
> > But there are no rule added to the list rules of ebtables in the physical
> > host where the VM is allocated.
> >
> > ###############################################
> > sudo ebtables -L
> >
> > Bridge table: filter
> >
> > Bridge chain: INPUT, entries: 0, policy: ACCEPT
> >
> > Bridge chain: FORWARD, entries: 0, policy: ACCEPT
> >
> > Bridge chain: OUTPUT, entries: 0, policy: ACCEPT
> > ###############################################
> >
> > And when I execute manually the script on the worker node, the rules are
> > added.
> > In the oned.conf we put this configuration
> >
> > ###############################################
> > VM_HOOK = [
> > name = "ebtables-start",
> > on = "running",
> > command = "ebtables-kvm", # or ebtables-xen
> > arguments = "one-$VMID",
> > remote = "yes" ]
> >
> > VM_HOOK = [
> > name = "ebtables-flush",
> > on = "done",
> > command = "ebtables-flush",
> > arguments = "",
> > remote = "yes" ]
> > ###############################################
> >
> > can you help me to fix this problem
> >
> > Best Regards
> > Marwen
> >
> >
> >
> >
> > _______________________________________________
> > Users mailing list
> > Users at lists.opennebula.org
> > http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.opennebula.org
> http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20110411/99e4eb07/attachment-0003.htm>
More information about the Users
mailing list