[Bug 776936] Re: Running KVM guest causes kernel panic on host
SergeiFranco
776936 at bugs.launchpad.net
Tue May 10 23:32:19 UTC 2011
Hi, here is the iptables-save output:
*filter
:INPUT DROP [992:148145]
:FORWARD ACCEPT [24:1496]
:OUTPUT ACCEPT [215528:64537610]
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -s 192.168.1.0/24 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m limit --limit
1/min -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -m limit --limit
1/min -j LOG --log-prefix "rate-limited SSH: "
-A INPUT -p tcp -m tcp --dport 22 -m state --state NEW -j REJECT
--reject-with icmp-port-unreachable
-A INPUT ! -s 192.168.1.0/24 -p udp -m udp --dport 53 -j DROP
-A FORWARD -i eth1 -o tun0 -j ACCEPT
-A FORWARD -i br0 -o tun0 -j ACCEPT
-A FORWARD -i eth1 -s 192.168.1.0/24 -m conntrack --ctstate NEW -j ACCEPT
-A FORWARD -i br0 -s 192.168.1.0/24 -m conntrack --ctstate NEW -j ACCEPT
-A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
COMMIT
*nat
:PREROUTING ACCEPT [1920:290675]
:POSTROUTING ACCEPT [16622:1247968]
:OUTPUT ACCEPT [16618:1247716]
-A POSTROUTING -j MASQUERADE
COMMIT
*mangle
:PREROUTING ACCEPT [171074:67106601]
:INPUT ACCEPT [169741:66910030]
:FORWARD ACCEPT [24:1496]
:OUTPUT ACCEPT [215528:64537610]
:POSTROUTING ACCEPT [215565:64541384]
COMMIT
On 11 May 2011 10:29, Serge Hallyn <776936 at bugs.launchpad.net> wrote:
> Can you append whatever script you use to set up the iptables rules, so
> I can as closely as possible emulate?
>
> --
> You received this bug notification because you are a direct subscriber
> of the bug.
> https://bugs.launchpad.net/bugs/776936
>
> Title:
> Running KVM guest causes kernel panic on host
>
> Status in “linux” package in Ubuntu:
> New
> Status in “qemu-kvm” package in Ubuntu:
> New
>
> Bug description:
> Binary package hint: qemu-kvm
>
> as per http://ubuntuforums.org/showthread.php?p=10766552#post10766552
>
> Host machine Ubuntu Natty server 2.6.38-8-generic i686
> Guest machine Ubuntu Natty server 2.6.38-8-generic i686
>
> Panic occurs in range of minutes to hours of uptime. It is load
> independent.
>
> To unsubscribe from this bug, go to:
> https://bugs.launchpad.net/ubuntu/+source/linux/+bug/776936/+subscribe
>
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in Ubuntu.
https://bugs.launchpad.net/bugs/776936
Title:
Running KVM guest causes kernel panic on host
More information about the Ubuntu-server-bugs
mailing list