OpenVZ Forum


Home » General » Support » *SOLVED* APF on host node
*SOLVED* APF on host node [message #16378] Mon, 03 September 2007 16:06 Go to next message
devonblzx is currently offline  devonblzx
Messages: 127
Registered: December 2006
Senior Member
I used to have APF on one of my OpenVZ nodes a while back and had no problems with it, but recently I have been trying to install APF on one of my newer nodes and it seems to cut off all access to my VPS's inside the node. I can still ping the host node but any IP that is run under a virtual server is unreachable.

Any ideas on why this is or how to get APF working on the host node?

http://static.openvz.org/userbars/openvz-user-2.png
ByteOnSite President

[Updated on: Tue, 04 September 2007 14:18] by Moderator

Report message to a moderator

Re: APF on host node [message #16383 is a reply to message #16378] Tue, 04 September 2007 04:42 Go to previous messageGo to next message
Vasily Tarasov is currently offline  Vasily Tarasov
Messages: 1345
Registered: January 2006
Senior Member
Hello,

As I remember some APF versions disable IP forwarding by default for security reasons, so please check /proc/sys/net/ipv4/ip_forward file.

If it will not help, please send us the output of the following commands (on HN):
# iptables -nv -L
# iptables -nvt nat -L

Thank you,
Vasily

Report message to a moderator

Re: APF on host node [message #16386 is a reply to message #16383] Tue, 04 September 2007 06:24 Go to previous messageGo to next message
devonblzx is currently offline  devonblzx
Messages: 127
Registered: December 2006
Senior Member
You are right, it does disable IP forwarding by default, that file returns 0 when I enabled APF, after I restarted the network it returned to 1 and my VPS's were pingable again.

Any idea how to enable IP forwarding with APF?

http://static.openvz.org/userbars/openvz-user-2.png
ByteOnSite President

Report message to a moderator

Re: APF on host node [message #16394 is a reply to message #16386] Tue, 04 September 2007 12:41 Go to previous messageGo to next message
ugob is currently offline  ugob
Messages: 271
Registered: March 2007
Senior Member
I don't have access to a recent install of APF, but it is somewhere in the config file (conf.apf).

Ugo

Please read the manual before asking questions:
http://download.openvz.org/doc/OpenVZ-Users-Guide.pdf

Please have a look at the wiki before asking questions:
http://wiki.openvz.org/Main_Page

Report message to a moderator

Re: APF on host node [message #16396 is a reply to message #16394] Tue, 04 September 2007 13:50 Go to previous message
devonblzx is currently offline  devonblzx
Messages: 127
Registered: December 2006
Senior Member
For anyone else looking...

I found the command to fix it.

SYSCTL_ROUTE=1 change to SYSCTL_ROUTE=0

This will fix it from disabling IP forwarding and cut off access to the VPS's.

I wish I would have known about that sooner.

http://static.openvz.org/userbars/openvz-user-2.png
ByteOnSite President

Report message to a moderator

Previous Topic: ve on a different subnet than host/multiple NICs
Next Topic: pstree with 2.6.20
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Tue Jul 15 08:26:31 GMT 2025

Total time taken to generate the page: 0.02408 seconds
Powered by FUDforum Powered by Virtuozzo Containers