Re: systemd-networkd, bridge and containers: unable to ping host from guest

To: debian-user@lists.debian.org
Subject: Re: systemd-networkd, bridge and containers: unable to ping host from guest
From: Reco <recoverym4n@enotuniq.net>
Date: Thu, 11 Jul 2019 18:59:31 +0300
Message-id: <[🔎] E1hlbTn-00062o-PD@enotuniq.net>
In-reply-to: <[🔎] 20190711153743.GA27413@beth>
References: <[🔎] 20190711132957.GA21313@beth> <[🔎] 2920cf93-73d6-4ec5-2b1e-1604298c675d@mail.com> <[🔎] 20190711153743.GA27413@beth>

	Hi.

On Thu, Jul 11, 2019 at 05:37:43PM +0200, lanquil wrote:
> On Thu 11 Jul 2019 at 16:51:50 +0200, john doe wrote:
> > 
> > If you can, I would turn off iptables to see if iptables is the culprit.
> 
> Ok, I have nftables.service active and stopping it I'm able to ping the host from the
> guest. So this was the problem. Thank you very much =)
> 
> If I remember well, I configured nftables.conf using one of the Debian defaults. Since
> it's a topic I still have not find the time to study, I'm a little blind on what I can
> do to fix the configuration...

An nft equivalent of:

iptables -A INPUT -p icmp --icmp-type 3 -j ACCEPT
iptables -A INPUT -p icmp --icmp-type 8 -j ACCEPT

Which should be:

icmp type destination-unreachable counter accept
icmp type echo-request counter accept

Reco

Reply to:

References:
- systemd-networkd, bridge and containers: unable to ping host from guest
  - From: lanquil <lanquil@gmx.com>
- Re: systemd-networkd, bridge and containers: unable to ping host from guest
  - From: john doe <johndoe65534@mail.com>
- Re: systemd-networkd, bridge and containers: unable to ping host from guest
  - From: lanquil <lanquil@gmx.com>

Prev by Date: Re: [SOLVED] tailf vs buster
Next by Date: Re: Black screen after fresh install of buster
Previous by thread: Re: systemd-networkd, bridge and containers: unable to ping host from guest
Next by thread: Re: systemd-networkd, bridge and containers: unable to ping host from guest
Index(es):
- Date
- Thread