OpenVZ Forum: Support » Shorewall Setup

Home » General » Support » Shorewall Setup

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Shorewall Setup [message #7925]

Mon, 30 October 2006 17:11

zoom
Messages: 19
Registered: March 2006
Location: Regina, Saskatchewan Cana...

Junior Member

Hello,
Wondering if anyone can post what is needed in Shorewall to allow people from the outside to connect to virtual machines using OpenVZ?

Currently, I can connect to the host fine, however I can't reach any of my virtual machines. I assume this has something to do with configuring the venet0 interface in shorewall to allow packet forwarding. If someone could post their configuration of shorewall under OpenVZ(HOST)I would appreciate it. Below is what I have in my interfaces, policy, rules files for shorewall. Thanks.

/etc/shorewall/interfaces
#ZONE   INTERFACE       BROADCAST       OPTIONS
net     eth0      204.83.151.73

/etc/shorewall/policy
#SOURCE         DEST            POLICY          LOG             LIMIT:BURST
#                                               LEVEL
fw      net     ACCEPT
net     all     DROP
all     all     REJECT

/etc/shorewall/rules
#SECTION RELATED
SECTION NEW
ACCEPT  net                     fw      tcp     22      -
ACCEPT  net                     fw      icmp    -       -

Report message to a moderator