Re: KVM networking.

To: debian-user@lists.debian.org
Subject: Re: KVM networking.
From: Arno Schuring <aelschuring@hotmail.com>
Date: Wed, 16 Nov 2011 20:49:00 +0100
Message-id: <[🔎] 20111116204900.0743f311@neminis.intra.loos.site>
In-reply-to: <[🔎] 4ec2652f.0611cc0a.1232.ffffd2b6@mx.google.com>
References: <[🔎] 4eb6dd81.1478cc0a.2f0e.69b1@mx.google.com> <[🔎] 20111107213156.5284cbd1@neminis.intra.loos.site> <[🔎] 4eb8de14.4713cc0a.5728.121e@mx.google.com> <[🔎] 20111109222614.7ef98ec1@neminis.intra.loos.site> <[🔎] 4ebd4bfe.4c9bcc0a.4400.ffffbfc7@mx.google.com> <[🔎] 20111112151649.4ef2dd19@neminis.intra.loos.site> <[🔎] 4ec2652f.0611cc0a.1232.ffffd2b6@mx.google.com>

Sthu Deus (sthu.deus@gmail.com on 2011-11-15 20:12 +0700):
> $ /usr/bin/kvm -localtime -m 256 -no-reboot -boot c
> -hda da -net nic,macaddr=$(printf
> 'DE:AD:BE:EF:%02X:%02X\n' $((RANDOM%256)) $((RANDOM%256))) -net tap
> 
> kvm: -net tap: could not configure /dev/net/tun (tap%d): Operation not
> permitted
> 
> kvm: -net tap: Device 'tap' could not be initialized
> 
> I run it under normal user - as You have guessed already - yet in
> sudoers I have for the user (as I understand all the commands
> involved in tap bringing up by KVM):
> 
> vmuser     ALL = /sbin/ifconfig *, /sbin/ifup br0, /sbin/ifdown
> br0, /sbin/ip *, /sbin/brctl *, /usr/sbin/tunctl *, /sbin/route add
> -host *
> 
> How I can solve this?

qemu does not use sudo. -net tap,ifname=$(sudo tunctl -b) doesn't work?

> 
> By the way, to overrun the permission problem I have tried running it
> under sudo (root) user when I got the following error:
> 
> No protocol specified
> Could not initialize SDL(No available video device) - exiting
> 
> So it needs a screen for KVM window running. Do You know how I can
> launch it in such case? - Except to allow root user. :)

Most likely your sudo does not preserve $DISPLAY.

> >See my other mail. You can get the network working by using the
> >correct routes (I hope). But that won't get you internet access from
> >the VM without either NAT or reconfiguring your modem.
> 
> My host is connected to router. Do You mean that I need NAT at the
> router or host? - I thought host only.

Yes, NAT at the host should work.


Sthu Deus (sthu.deus@gmail.com on 2011-11-15 01:40 +0700):
> Thank You for Your time and answer, Arno:
> 
> >I think this setup might need additional configuration on the
> >outside, because you need to add the same subnet route on your
> >Internet modem/router. I don't think qemu gives you NAT for free...
> 
> I've got such a problem w/ NATing:
> 
> /sbin/iptables -t nat -A POSTROUTING -s 192.168.1.0/24 -d !
> 192.168.1.0/24 -j SNAT --to-source 192.168.0.2
> 
> Bad argument `192.168.1.0/24'
> 
> Do You have any idea why iptables does not accept the ip nor the ip
> net?

You need to use ! -d addr, not -d ! addr


Regards,
Arno

Reply to:

Follow-Ups:
- Re: KVM networking.
  - From: Sthu Deus <sthu.deus@gmail.com>

References:
- KVM networking.
  - From: Sthu Deus <sthu.deus@gmail.com>
- Re: KVM networking.
  - From: Arno Schuring <aelschuring@hotmail.com>
- Re: KVM networking.
  - From: Sthu Deus <sthu.deus@gmail.com>
- Re: KVM networking.
  - From: Arno Schuring <aelschuring@hotmail.com>
- Re: KVM networking.
  - From: Sthu Deus <sthu.deus@gmail.com>
- Re: KVM networking.
  - From: Arno Schuring <aelschuring@hotmail.com>
- Re: KVM networking.
  - From: Sthu Deus <sthu.deus@gmail.com>

Prev by Date: Re: error when configuring the Kerberos NFSv4 on Debian 6.0.3 (in testing no error)
Next by Date: Re: Default applications in Gnome 3 not respected
Previous by thread: Re: KVM networking.
Next by thread: Re: KVM networking.
Index(es):
- Date
- Thread