OpenVZ Forum


Home » General » Support » shorewall in VE
shorewall in VE [message #33892] Tue, 18 November 2008 14:42 Go to next message
disaster is currently offline  disaster
Messages: 158
Registered: February 2006
Senior Member
Hello!

I'm trying to use shorewall in a VE but i always get this error:
iptables: No chain/target/match by that name
ERROR: Command "/sbin/iptables -t nat -A eth0_masq -s 192.168.1.0/24 -d 0.0.0.0/0 -j MASQUERADE" Failed

ifconfig in VE:
ifconfig
eth0 Link encap:Ethernet HWaddr 00:18:51:15:FB:E7
inet addr:XX.XX.179.70 Bcast:XX.XX.179.95 Mask:255.255.255.224
inet6 addr: fe80::218:51ff:fe15:fbe7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:5940 errors:0 dropped:0 overruns:0 frame:0
TX packets:547 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:324389 (316.7 KiB) TX bytes:35426 (34.5 KiB)

eth2 Link encap:Ethernet HWaddr 00:18:51:FD:F9:07
inet addr:192.168.1.20 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::218:51ff:fefd:f907/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:339 errors:0 dropped:0 overruns:0 frame:0
TX packets:284 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:25076 (24.4 KiB) TX bytes:16648 (16.2 KiB)

Thanks Stefan

Report message to a moderator

Re: shorewall in VE [message #33918 is a reply to message #33892] Wed, 19 November 2008 15:06 Go to previous messageGo to next message
maratrus is currently offline  maratrus
Messages: 1495
Registered: August 2007
Location: Moscow
Senior Member
Hello,

who should create eth0_masq chain in nat table?

If you have to do it make sure that you've done it. Check "iptables -t nat -L" to find eth0_masq chain there.

Report message to a moderator

Re: shorewall in VE [message #33919 is a reply to message #33892] Wed, 19 November 2008 15:08 Go to previous messageGo to next message
disaster is currently offline  disaster
Messages: 158
Registered: February 2006
Senior Member
eth0_masq is created but masuqerade does not work - is masquerade module not virtualized in latest RHEL5 kernel?

Report message to a moderator

Re: shorewall in VE [message #33920 is a reply to message #33919] Wed, 19 November 2008 15:26 Go to previous message
maratrus is currently offline  maratrus
Messages: 1495
Registered: August 2007
Location: Moscow
Senior Member
Have you loaded ipt_MASQUERADE module on the HN? Have you given an access to ipt_MASQUERADE to your VE?

Report message to a moderator

Previous Topic: Gateway 192.0.2.1 with Ubuntu-8.04 and Debian 4.0
Next Topic: IPv6+NAT+venet IFs
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sat Feb 14 05:29:25 GMT 2026

Total time taken to generate the page: 0.54879 seconds
Powered by FUDforum Powered by Virtuozzo Containers