Re: iptables and kvm

To: debian-user@lists.debian.org
Subject: Re: iptables and kvm
From: Rob Owens <rowens@ptd.net>
Date: Fri, 25 Jan 2013 07:37:39 -0500
Message-id: <[🔎] 20130125123739.GA26055@aurora.owens.net>
In-reply-to: <[🔎] 51021e49.e684980a.513c.001e@mx.google.com>
References: <[🔎] 1359054666.32117312@webmail.gtek.biz> <[🔎] 51021e49.e684980a.513c.001e@mx.google.com>

On Fri, Jan 25, 2013 at 12:55:13PM +0700, Sthu Deus wrote:
> Good time of the day, Craig.
> 
> 
> You wrote:
> 
> > I am running Debian Wheezy, and have installed kvm. When I list my
> > iptables rules there are a set of default rules defined, and
> > forwarding is set up for my virtual network. For the life of me I can
> > not figure out where these rules are defined, and I would like to
> > make some changes that I want to be permanent. Would anyone mind
> > enlightening me as where I can find the source of those rules?
> > 
> > 
> > grep -RIil iptables /etc/* returns nothing.
> 
> If You want to set Your own rules, You can write it to a file where You
> want to hold it, then You can put a script w/ execution bit set in
> 
> /etc/network/if-pre-up.d
> 
> that will read those files.
> 
> As soon as the interface comes up, Your rules will come up too (in case
> it is correct - otherwise the defaults will be used).
> 
I haven't had very good luck putting iptables rules in
/etc/network/if-pre-up.d while using network-manager.  Last I read,
there's a bug/feature in network-manager that ignores if-pre-up.d.
Instead, I have to use the iptables-persistent package.

-Rob

Reply to:

Follow-Ups:
- Re: iptables and kvm
  - From: Tom H <tomh0665@gmail.com>

References:
- iptables and kvm
  - From: craig@gtek.biz
- Re: iptables and kvm
  - From: Sthu Deus <sthu.deus@gmail.com>

Prev by Date: Re: clock source 25 is not valid, cannot use
Next by Date: Re: MPD and Last.FM, not connecting or working.
Previous by thread: Re: iptables and kvm
Next by thread: Re: iptables and kvm
Index(es):
- Date
- Thread