| Re: iptables modules in VE [message #32663 is a reply to message #32662] |
Fri, 22 August 2008 13:46   |
khorenko
Messages: 533
Registered: January 2006
Location: Moscow, Russia
|
Senior Member |
|
|
| crea wrote on Fri, 22 August 2008 17:21 |
So am I right in understanding I can just use IPTABLES="" in /etc/vz/vz.conf since my iptables modules will be available at node startup ( modules in /etc/modules will be loaded before any VE is started ) ?
|
Well, not exactly.
You need leave IPTABLES as is in /etc/vz/vz.conf and comment out completely from CT.conf (for example /etc/vz/conf/101.conf).
Then all iptables modules loaded before CT start will be available inside a Container.
| Quote: |
Should I just comment IPTABLES line out completely ? Why NAT became unavailable ?
|
Because you removed IPTABLES variable from global config /etc/vz/vz.conf.
| Quote: |
And it didn't help to fix Ipset as you see anyway.
|
Well, and could you please tell me if you really need the functionality of Ipset module or just curious why it's not available?
--
Konstantin
If your problem is solved - please, report it!
It's even more important than reporting the problem itself...
|
|
|
|
OpenVZ Forum
Members
Search
Help
Register
Login
Home
