Help!

Bug#549949: libvirt-bin: starting network failed because o..

  
  
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Bugs Dist RSS
Next:  Accepted mutter-moblin 0.40.2-1 (source i386 all)  
Author Message
Daniel
External


Since: Mar 21, 2007
Posts: 2
PostPosted: Tue Oct 06, 2009 1:10 pm    Post subject: Bug#549949: libvirt-bin: starting network failed because of iptables rule
Archived from groups: linux>debian>bugs>dist (more info?)
Package: libvirt-bin
Version: 0.7.1-1
Severity: important


Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>

virsh # net-start router
error: Failed to start network router
error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255.255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
iptables: No chain/target/match by that name.

router.xml

<network>
<name>router</name>
<uuid>3e64b37a-08b9-7902-d263-d835f7581a6f</uuid>
<forward mode='route' dev='wlan0'/>
<bridge name='virbr2' stp='on' forwardDelay='0' />
<ip address='192.168.110.254' netmask='255.255.255.0'>
<dhcp>
<range start='192.168.110.90' end='192.168.110.99' />
</dhcp>
</ip>
</network>

-- System Information:
Debian Release: squeeze/sid
APT prefers transitional
APT policy: (500, 'transitional'), (500, 'unstable'), (101, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.30-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-Cool
Shell: /bin/sh linked to /bin/bash

Versions of packages libvirt-bin depends on:
ii adduser 3.111 add and remove users and groups
ii libavahi-client3 0.6.25-1 Avahi client library
ii libavahi-common3 0.6.25-1 Avahi common library
ii libc6 2.9-27 GNU C Library: Shared libraries
ii libdbus-1-3 1.2.16-2 simple interprocess messaging syst
ii libdevmapper1.02. 2:1.02.38-1 The Linux Kernel Device Mapper use
ii libgnutls26 2.8.4-1 the GNU TLS library - runtime libr
ii libhal1 0.5.13-3 Hardware Abstraction Layer - share
ii libparted1.8-12 1.8.8.git.2009.07.19-5 The GNU Parted disk partitioning s
ii libpolkit-dbus2 0.9-4 library for accessing PolicyKit vi
ii libpolkit2 0.9-4 library for accessing PolicyKit
ii libreadline6 6.0-5 GNU readline and history libraries
ii libsasl2-2 2.1.23.dfsg1-1.1 Cyrus SASL - authentication abstra
ii libselinux1 2.0.85-4 SELinux runtime shared libraries
ii libuuid1 2.16.1-3 Universally Unique ID library
ii libvirt0 0.7.1-1 library for interfacing with diffe
ii libxenstore3.0 3.4.0-2 Xenstore communications library fo
ii libxml2 2.7.5.dfsg-1 GNOME XML library
ii logrotate 3.7.8-4 Log rotation utility

Versions of packages libvirt-bin recommends:
ii bridge-utils 1.4-5 Utilities for configuring the Linu
ii dnsmasq-base 2.50-1 A small caching DNS proxy and DHCP
ii iptables 1.4.4-2 administration tools for packet fi
ii netcat-openbsd 1.89-3 TCP/IP swiss army knife
ii qemu 0.10.6-1 fast processor emulator

Versions of packages libvirt-bin suggests:
ii policykit 0.9-4 framework for managing administrat

-- no debconf information



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST.DeleteThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.DeleteThis@lists.debian.org
Back to top
Daniel Huhardeaux
External


Since: Mar 27, 2006
Posts: 15
PostPosted: Tue Oct 06, 2009 1:10 pm    Post subject: Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Daniel a écrit :
> Package: libvirt-bin
> Version: 0.7.1-1
> Severity: important
>
>
> Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>
>
> virsh # net-start router
> error: Failed to start network router
> error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255.255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
> iptables: No chain/target/match by that name.
>
Problem is not iptables related, it's that there is no network interface
in this IP range.

Regards

--
Daniel




--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST DeleteThis @lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster DeleteThis @lists.debian.org
Back to top
Guido Günther
External


Since: Jan 10, 2009
Posts: 48
PostPosted: Tue Oct 06, 2009 1:10 pm    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Tue, Oct 06, 2009 at 06:07:49PM +0200, Daniel Huhardeaux wrote:
> Daniel a écrit :
> >Package: libvirt-bin
> >Version: 0.7.1-1
> >Severity: important
> >
> >
> >Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>
> >virsh # net-start router
> >error: Failed to start network router
> >error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255.255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
> >iptables: No chain/target/match by that name.
> Problem is not iptables related, it's that there is no network
> interface in this IP range.
Do you have the Recommends: of libvirt-bin installed? Can you attach the
complete log of libvirtd?
-- Guido



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST.RemoveThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.RemoveThis@lists.debian.org
Back to top
Daniel Huhardeaux
External


Since: Oct 06, 2009
Posts: 2
PostPosted: Tue Oct 06, 2009 4:10 pm    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Guido Günther a écrit :
> On Tue, Oct 06, 2009 at 06:07:49PM +0200, Daniel Huhardeaux wrote:
>> Daniel a écrit :
>>> Package: libvirt-bin
>>> Version: 0.7.1-1
>>> Severity: important
>>>
>>>
>>> Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>
>>> virsh # net-start router
>>> error: Failed to start network router
>>> error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255.255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
>>> iptables: No chain/target/match by that name.
>> Problem is not iptables related, it's that there is no network
>> interface in this IP range.
> Do you have the Recommends: of libvirt-bin installed? Can you attach the
> complete log of libvirtd?

All needed packages are installed (see list given by reportbug). I can
start VMs without network.

Something seems messi with my network setup. I don't have any iface in
the 192.168.110.0/24 range, that's why the delete rule failed.

Usually -eg without libvirt- I start tap0 on IP 192.168.110.1 whenever
eth0 or wlan0 (net 192.168.0.0/24) are coming up (if-[up|down].d) and
create route. Then start kvm and everything is ok (vde).

I made a test with tap0 started and ask virbr2 to take IP
192.168.110.10, network is starting. But my VMs can't access to the net,
even pinging the host adress 192.168.110.[1|10] fail.

Still searching. Thanks for your time and help.

--
Daniel



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST RemoveThis @lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster RemoveThis @lists.debian.org
Back to top
Guido Günther
External


Since: Jan 10, 2009
Posts: 48
PostPosted: Tue Oct 06, 2009 5:10 pm    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Tue, Oct 06, 2009 at 08:30:08PM +0200, Daniel Huhardeaux wrote:
> Guido Günther a écrit :
> >On Tue, Oct 06, 2009 at 06:07:49PM +0200, Daniel Huhardeaux wrote:
> >>Daniel a écrit :
> >>>Package: libvirt-bin
> >>>Version: 0.7.1-1
> >>>Severity: important
> >>>
> >>>
> >>>Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>
> >>>virsh # net-start router
> >>>error: Failed to start network router
> >>>error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255..255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
> >>>iptables: No chain/target/match by that name.
> >>Problem is not iptables related, it's that there is no network
> >>interface in this IP range.
> >Do you have the Recommends: of libvirt-bin installed? Can you attach the
> >complete log of libvirtd?
>
> All needed packages are installed (see list given by reportbug). I
> can start VMs without network.
>
> Something seems messi with my network setup. I don't have any iface
> in the 192.168.110.0/24 range, that's why the delete rule failed.
Could you check if this helps (untested):


diff --git a/src/network_driver.c b/src/network_driver.c
index 49855bf..d673921 100644
--- a/src/network_driver.c
+++ b/src/network_driver.c
@@ -751,16 +751,15 @@ static void
networkRemoveIptablesRules(struct network_driver *driver,
virNetworkObjPtr network) {
if (network->def->forwardType != VIR_NETWORK_FORWARD_NONE) {
- iptablesRemoveForwardMasquerade(driver->iptables,
- network->def->network,
- network->def->forwardDev);
-
- if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT)
+ if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT) {
+ iptablesRemoveForwardMasquerade(driver->iptables,
+ network->def->network,
+ network->def->forwardDev);
iptablesRemoveForwardAllowRelatedIn(driver->iptables,
network->def->network,
network->def->bridge,
network->def->forwardDev);
- else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
+ } else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
iptablesRemoveForwardAllowIn(driver->iptables,
network->def->network,
network->def->bridge,


Cheers,
-- Guido



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST.DeleteThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.DeleteThis@lists.debian.org
Back to top
Daniel Huhardeaux
External


Since: Oct 06, 2009
Posts: 2
PostPosted: Tue Oct 06, 2009 5:10 pm    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Guido Günther a écrit :
> On Tue, Oct 06, 2009 at 08:30:08PM +0200, Daniel Huhardeaux wrote:
>> Guido Günther a écrit :
>>> On Tue, Oct 06, 2009 at 06:07:49PM +0200, Daniel Huhardeaux wrote:
>>>> Daniel a écrit :
>>>>> Package: libvirt-bin
>>>>> Version: 0.7.1-1
>>>>> Severity: important
>>>>>
>>>>>
>>>>> Iptable failed to start because of --destination ! <net> insteed of ! --destination <net>
>>>>> virsh # net-start router
>>>>> error: Failed to start network router
>>>>> error: internal error '/sbin/iptables --table nat --delete POSTROUTING --source 192.168.110.0/255.255.255.0 --destination ! 192.168.110.0/255.255.255.0 --out-interface wlan0 --jump MASQUERADE' exited with non-zero status 1 and signal 0: Using intrapositioned negation (`--option ! this`) is deprecated in favor of extrapositioned (`! --option this`).
>>>>> iptables: No chain/target/match by that name.
>>>> Problem is not iptables related, it's that there is no network
>>>> interface in this IP range.
>>> Do you have the Recommends: of libvirt-bin installed? Can you attach the
>>> complete log of libvirtd?
>> All needed packages are installed (see list given by reportbug). I
>> can start VMs without network.
>>
>> Something seems messi with my network setup. I don't have any iface
>> in the 192.168.110.0/24 range, that's why the delete rule failed.
> Could you check if this helps (untested):
>
>
> diff --git a/src/network_driver.c b/src/network_driver.c
> index 49855bf..d673921 100644
> --- a/src/network_driver.c
> +++ b/src/network_driver.c
> @@ -751,16 +751,15 @@ static void

Guido,

sorry but I installed the binaries, nothing compiled Wink
--
Daniel



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST DeleteThis @lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster DeleteThis @lists.debian.org
Back to top
Rob S. Wolfram
External


Since: Nov 05, 2009
Posts: 1
PostPosted: Thu Nov 05, 2009 7:10 am    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Hi Guido,

On Tue, Oct 06, 2009 at 10:14:10PM +0200, Guido Günther wrote:
> Could you check if this helps (untested):
>
>
> diff --git a/src/network_driver.c b/src/network_driver.c
> index 49855bf..d673921 100644
> --- a/src/network_driver.c
> +++ b/src/network_driver.c
> @@ -751,16 +751,15 @@ static void
> networkRemoveIptablesRules(struct network_driver *driver,
> virNetworkObjPtr network) {
> if (network->def->forwardType != VIR_NETWORK_FORWARD_NONE) {
> - iptablesRemoveForwardMasquerade(driver->iptables,
> - network->def->network,
> - network->def->forwardDev);
> -
> - if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT)
> + if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT) {
> + iptablesRemoveForwardMasquerade(driver->iptables,
> + network->def->network,
> + network->def->forwardDev);
> iptablesRemoveForwardAllowRelatedIn(driver->iptables,
> network->def->network,
> network->def->bridge,
> network->def->forwardDev);
> - else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
> + } else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
> iptablesRemoveForwardAllowIn(driver->iptables,
> network->def->network,
> network->def->bridge,

This patch works. I applied it to 0.7.1-2 and compiled it in squeeze.
Please include the patch in following versions Smile

Regards,
Rob
--
Rob S. Wolfram <rsw.DeleteThis@hamal.nl> OpenPGP key 0xD61A655D
Hamal is a yellow star in the constallation Aries.
It is 66 lightyears away, so it doesn't effect your personality.




--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST.DeleteThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.DeleteThis@lists.debian.org
Back to top
Guido Günther
External


Since: Jan 10, 2009
Posts: 48
PostPosted: Thu Nov 05, 2009 4:10 pm    Post subject: Bug#549949: [Pkg-libvirt-maintainers] Bug#549949: Bug#549949: libvirt-bin: starting network failed because of iptables rule [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Wed, Nov 04, 2009 at 10:52:26PM +0100, Rob S. Wolfram wrote:
> Hi Guido,
>
> On Tue, Oct 06, 2009 at 10:14:10PM +0200, Guido Günther wrote:
> > Could you check if this helps (untested):
> >
> >
> > diff --git a/src/network_driver.c b/src/network_driver.c
> > index 49855bf..d673921 100644
> > --- a/src/network_driver.c
> > +++ b/src/network_driver.c
> > @@ -751,16 +751,15 @@ static void
> > networkRemoveIptablesRules(struct network_driver *driver,
> > virNetworkObjPtr network) {
> > if (network->def->forwardType != VIR_NETWORK_FORWARD_NONE) {
> > - iptablesRemoveForwardMasquerade(driver->iptables,
> > - network->def->network,
> > - network->def->forwardDev);
> > -
> > - if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT)
> > + if (network->def->forwardType == VIR_NETWORK_FORWARD_NAT) {
> > + iptablesRemoveForwardMasquerade(driver->iptables,
> > + network->def->network,
> > + network->def->forwardDev);
> > iptablesRemoveForwardAllowRelatedIn(driver->iptables,
> > network->def->network,
> > network->def->bridge,
> > network->def->forwardDev);
> > - else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
> > + } else if (network->def->forwardType == VIR_NETWORK_FORWARD_ROUTE)
> > iptablesRemoveForwardAllowIn(driver->iptables,
> > network->def->network,
> > network->def->bridge,
>
> This patch works. I applied it to 0.7.1-2 and compiled it in squeeze.
> Please include the patch in following versions Smile
Applied. Thanks a lot for testing!
-- Guido



--
To UNSUBSCRIBE, email to debian-bugs-dist-REQUEST.RemoveThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.RemoveThis@lists.debian.org
Back to top
Display posts from previous:   
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Bugs Dist All times are: Eastern Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum