Mageia Bugzilla – Attachment 11871 Details for
Bug 25889
Firewalld + Libvirt
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Installed packages, iptables output and error message of libvirt
mga7-25889.txt (text/plain), 4.65 KB, created by
Ulrich Beckmann
on 2020-09-07 17:30:57 CEST
(
hide
)
Description:
Installed packages, iptables output and error message of libvirt
Filename:
MIME Type:
Creator:
Ulrich Beckmann
Created:
2020-09-07 17:30:57 CEST
Size:
4.65 KB
patch
obsolete
>[root@mga7-clone ~]# dnf list $(cat mga7_25889.lst) >Last metadata expiration check: 0:38:03 ago on Mon 07 Sep 2020 10:08:49 AM -03. >Installed Packages >firewall-applet.noarch 0.7.5-1.mga7 @updates_testing-x86_64 >firewall-config.noarch 0.7.5-1.mga7 @updates_testing-x86_64 >firewalld.noarch 0.7.5-1.mga7 @updates_testing-x86_64 >firewalld-filesystem.noarch 0.7.5-1.mga7 @updates_testing-x86_64 >python3-firewall.noarch 0.7.5-1.mga7 @updates_testing-x86_64 >[root@mga7-clone ~]# >[root@mga7-clone ~]# systemctl list-units | egrep 'firewall|virt' | egrep -v virtual >firewalld.service loaded active running firewalld - dynamic firewall daemon >libvirtd.service loaded active running Virtualization daemon >virtlockd.socket loaded active listening Virtual machine lock manager socket >virtlogd.socket loaded active listening Virtual machine log manager socket >[root@mga7-clone ~]# >[root@mga7-clone ~]# iptables -L >Chain INPUT (policy ACCEPT) >target prot opt source destination >LIBVIRT_INP all -- anywhere anywhere > >Chain FORWARD (policy ACCEPT) >target prot opt source destination >LIBVIRT_FWX all -- anywhere anywhere >LIBVIRT_FWI all -- anywhere anywhere >LIBVIRT_FWO all -- anywhere anywhere > >Chain OUTPUT (policy ACCEPT) >target prot opt source destination >LIBVIRT_OUT all -- anywhere anywhere > >Chain LIBVIRT_FWI (1 references) >target prot opt source destination > >Chain LIBVIRT_FWO (1 references) >target prot opt source destination > >Chain LIBVIRT_FWX (1 references) >target prot opt source destination > >Chain LIBVIRT_INP (1 references) >target prot opt source destination > >Chain LIBVIRT_OUT (1 references) >target prot opt source destination >[root@mga7-clone ~]# >[root@mga7-clone ~]# iptables -t nat -L >Chain PREROUTING (policy ACCEPT) >target prot opt source destination > >Chain INPUT (policy ACCEPT) >target prot opt source destination > >Chain OUTPUT (policy ACCEPT) >target prot opt source destination > >Chain POSTROUTING (policy ACCEPT) >target prot opt source destination >LIBVIRT_PRT all -- anywhere anywhere > >Chain LIBVIRT_PRT (1 references) >target prot opt source destination >[root@mga7-clone ~]# > > >Virtuelles Netzwerk «default» konnte nicht gestartet werden: error from service: changeZoneOfInterface: COMMAND_FAILED: '/sbin/nft insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt' failed: Error: Could not process rule: No such file or directory >insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt >^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > > >Traceback (most recent call last): > File "/usr/share/virt-manager/virtManager/netlist.py", line 351, in validate_network > netobj.start() > File "/usr/share/virt-manager/virtManager/libvirtobject.py", line 66, in newfn > ret = fn(self, *args, **kwargs) > File "/usr/share/virt-manager/virtManager/network.py", line 76, in start > self._backend.create() > File "/usr/lib64/python3.7/site-packages/libvirt.py", line 2993, in create > if ret == -1: raise libvirtError ('virNetworkCreate() failed', net=self) >libvirt.libvirtError: error from service: changeZoneOfInterface: COMMAND_FAILED: '/sbin/nft insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt' failed: Error: Could not process rule: No such file or directory >insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt >^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[root@mga7-clone ~]# dnf list $(cat mga7_25889.lst) Last metadata expiration check: 0:38:03 ago on Mon 07 Sep 2020 10:08:49 AM -03. Installed Packages firewall-applet.noarch 0.7.5-1.mga7 @updates_testing-x86_64 firewall-config.noarch 0.7.5-1.mga7 @updates_testing-x86_64 firewalld.noarch 0.7.5-1.mga7 @updates_testing-x86_64 firewalld-filesystem.noarch 0.7.5-1.mga7 @updates_testing-x86_64 python3-firewall.noarch 0.7.5-1.mga7 @updates_testing-x86_64 [root@mga7-clone ~]# [root@mga7-clone ~]# systemctl list-units | egrep 'firewall|virt' | egrep -v virtual firewalld.service loaded active running firewalld - dynamic firewall daemon libvirtd.service loaded active running Virtualization daemon virtlockd.socket loaded active listening Virtual machine lock manager socket virtlogd.socket loaded active listening Virtual machine log manager socket [root@mga7-clone ~]# [root@mga7-clone ~]# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination LIBVIRT_INP all -- anywhere anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination LIBVIRT_FWX all -- anywhere anywhere LIBVIRT_FWI all -- anywhere anywhere LIBVIRT_FWO all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination LIBVIRT_OUT all -- anywhere anywhere Chain LIBVIRT_FWI (1 references) target prot opt source destination Chain LIBVIRT_FWO (1 references) target prot opt source destination Chain LIBVIRT_FWX (1 references) target prot opt source destination Chain LIBVIRT_INP (1 references) target prot opt source destination Chain LIBVIRT_OUT (1 references) target prot opt source destination [root@mga7-clone ~]# [root@mga7-clone ~]# iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain INPUT (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination Chain POSTROUTING (policy ACCEPT) target prot opt source destination LIBVIRT_PRT all -- anywhere anywhere Chain LIBVIRT_PRT (1 references) target prot opt source destination [root@mga7-clone ~]# Virtuelles Netzwerk «default» konnte nicht gestartet werden: error from service: changeZoneOfInterface: COMMAND_FAILED: '/sbin/nft insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt' failed: Error: Could not process rule: No such file or directory insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ Traceback (most recent call last): File "/usr/share/virt-manager/virtManager/netlist.py", line 351, in validate_network netobj.start() File "/usr/share/virt-manager/virtManager/libvirtobject.py", line 66, in newfn ret = fn(self, *args, **kwargs) File "/usr/share/virt-manager/virtManager/network.py", line 76, in start self._backend.create() File "/usr/lib64/python3.7/site-packages/libvirt.py", line 2993, in create if ret == -1: raise libvirtError ('virNetworkCreate() failed', net=self) libvirt.libvirtError: error from service: changeZoneOfInterface: COMMAND_FAILED: '/sbin/nft insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt' failed: Error: Could not process rule: No such file or directory insert rule inet firewalld raw_PREROUTING_ZONES iifname "virbr0" goto raw_PRE_libvirt ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
View Attachment As Raw
Actions:
View
Attachments on
bug 25889
: 11871