After changing "ip_conntrack_disable_ve0" from 1 to 0 in '/etc/modprobe.d/openvz.conf' iptables nat works fine inside server :
[root@sv ~]# iptables -t nat -nvL
Chain PREROUTING (policy ACCEPT 1756 packets, 108K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 1790 packets, 111K bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 38 packets, 2781 bytes)
pkts bytes target prot opt in out source destination
but I cant use iptables nat inside vps, how can I fix it ?
root@vps:/# iptables -t nat -nvL
iptables v1.4.21: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
[root@sv modprobe.d]# cat /etc/modprobe.d/openvz.conf
options nf_conntrack ip_conntrack_disable_ve0=0
Quote:
[root@sv modprobe.d]# grep -i iptables /etc/vz/vz.conf
## WARNING: IPTABLES parameter is deprecated,
## iptables kernel modules to be loaded by init.d/vz script
IPTABLES_MODULES="iptable_nat ipt_REJECT ipt_tos ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length ip6_tables ip6table_filter ip6table_mangle ip6t_REJECT"
Quote:
[root@sv conf]# grep -i iptables /etc/vz/conf/105.conf
IPTABLES="iptable_nat ip_tables iptable_filter iptable_mangle ipt_multiport ipt_REJECT ipt_LOG ip_conntrack ipt_conntrack ipt_state ipt_helper ipt_REDIRECT"
----
[root@sv ~]# uname -a
Linux d8.d.de.static.server.com 2.6.32-042stab092.2 #1 SMP Tue Jul 8 10:35:55 MSK 2014 x86_64 x86_64 x86_64 GNU/Linux
I've root access to both server and vps.
[Updated on: Tue, 15 July 2014 21:01]
Report message to a moderator
OpenVZ Forum
Members
Search
Help
Register
Login
Home
