OpenVZ Forum


Home » International » Russian » CENTOS 5.2 PAE SMP sysctl
Re: CENTOS 5.2 PAE SMP sysctl [message #35710 is a reply to message #35699] Thu, 16 April 2009 12:12 Go to previous messageGo to previous message
valmon is currently offline  valmon
Messages: 18
Registered: April 2009
Location: Москва
Junior Member
maratrus , большое спасибо за помощь!
Да, действительно, вы были правы, дело было в iptables
После того как я добавил в фаил /etc/sysconfig/iptables
Строки
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 53 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m state --state NEW -m udp --dport 53 -j ACCEPT

Все стало нормально резольвится.
Я правильно добавил правила, и туда куда надо?

[root@host-46-129 ~]# iptables-save
# Generated by iptables-save v1.3.5 on Fri Apr 17 00:03:02 2009
*mangle
:PREROUTING ACCEPT [58:5106]
:INPUT ACCEPT [57:5028]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [59:10694]
:POSTROUTING ACCEPT [59:10694]
COMMIT
# Completed on Fri Apr 17 00:03:02 2009
# Generated by iptables-save v1.3.5 on Fri Apr 17 00:03:02 2009
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [49:9298]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p esp -j ACCEPT
-A RH-Firewall-1-INPUT -p ah -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 25 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 53 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m state --state NEW -m udp --dport 53 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
# Completed on Fri Apr 17 00:03:02 2009
[root@host-46-129 ~]# vzctl start 46130
Container is already running
[root@host-46-129 ~]# vzctl stop 46130
Stopping container ...
Container was stopped
Container is unmounted
[root@host-46-129 ~]# vzctl start 46130
Starting container ...
Container is mounted
Adding IP address(es): 213.248.46.130
Setting CPU units: 1000
Configure meminfo: 65536
Set hostname: host-46-130.xxxxxxx.com
File resolv.conf was modified
Container start in progress...
[root@host-46-129 ~]# vzctl enter 46130
entered into CT 46130
[root@host-46-130 /]# ping mail.ru
PING mail.ru (194.67.57.226) 56(84) bytes of data.
64 bytes from mail.ru (194.67.57.226): icmp_seq=1 ttl=120 time=1.85 ms
64 bytes from mail.ru (194.67.57.226): icmp_seq=2 ttl=120 time=1.56 ms
64 bytes from mail.ru (194.67.57.226): icmp_seq=3 ttl=120 time=1.57 ms
64 bytes from mail.ru (194.67.57.226): icmp_seq=4 ttl=120 time=6.06 ms

--- mail.ru ping statistics ---
4 packets transmitted, 4 received, 0% packet loss, time 3002ms
rtt min/avg/max/mdev = 1.569/2.765/6.067/1.910 ms
[root@host-46-130 /]#

Хостинг-Поинт | Качественный и недорогой виртуальный хостинг.

[Updated on: Thu, 16 April 2009 12:13]

Report message to a moderator

[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: OPENVZ + cacti
Next Topic: Проблема с OOMGUARPAGES
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Tue Nov 05 12:01:06 GMT 2024

Total time taken to generate the page: 0.03539 seconds
Powered by FUDforum Powered by Virtuozzo Containers