OpenVZ Forum: Support » restrict netfilter to HN only

Home » General » Support » restrict netfilter to HN only

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: restrict netfilter to HN only [message #7713 is a reply to message #7708]

Mon, 23 October 2006 05:53

Vasily Tarasov
Messages: 1345
Registered: January 2006

Senior Member

Hello,

1) In order to disable iptables in VE you can use vz.conf/<veid>.conf files or vzctl. Look at default vz.conf:

...
IPTABLES="ipt_REJECT ipt_tos ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length"
...

It means, that this modules and appropriate rules/targets will be available in VEs. Just do

...
IPTABLES=""
...

and no iptables will be available in VEs.

2) As concerns configuration options. Yes, there can be different problems, that you pointed. You can fill bugs in bugzilla and some time these bugs will be fixed! Rolling Eyes

Thanks!

Report message to a moderator

[Message index]

		restrict netfilter to HN only By: gm77 on Sat, 21 October 2006 20:50
		Re: restrict netfilter to HN only By: Vasily Tarasov on Mon, 23 October 2006 05:53

Previous Topic:	SOLVED vpsid shows no pid
Next Topic:	Fresh FC4 - Network Issues

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Fri Sep 06 06:56:22 GMT 2024

Total time taken to generate the page: 0.06413 seconds