ebtables rules limit
ebtables rules limit
Hello,
How do I increase the number of rules supported by ebtables?
Now in the number of rules more than 500 it falls.
How do I increase the number of rules supported by ebtables?
Now in the number of rules more than 500 it falls.
Re: ebtables rules limit
Does it give any error messages?
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: ebtables rules limit
In /var/log/libvirt/libvirtd.log:
2018-10-23 12:20:04.655+0000: 2910: error : virCommandWait:2319 : internal error Child process (/bin/sh -c 'EBT="/sbin/ebtables"
cmd='\''$EBT -t nat -F J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -X J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -N J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -A libvirt-J-vnet47 -j J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -F J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -X J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -N J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -A libvirt-J-vnet47 -p 0x080
2018-10-23 12:20:04.770+0000: 2910: error : ebiptablesApplyNewRules:3935 : Error while building firewall: Some rules could not be created for interface vnet47:
2018-10-23 12:20:04.655+0000: 2910: error : virCommandWait:2319 : internal error Child process (/bin/sh -c 'EBT="/sbin/ebtables"
cmd='\''$EBT -t nat -F J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -X J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -N J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -A libvirt-J-vnet47 -j J-vnet47-mac'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -F J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -X J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
cmd='\''$EBT -t nat -N J-vnet47-ipv4-ip'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
cmd='\''$EBT -t nat -A libvirt-J-vnet47 -p 0x080
2018-10-23 12:20:04.770+0000: 2910: error : ebiptablesApplyNewRules:3935 : Error while building firewall: Some rules could not be created for interface vnet47:
Re: ebtables rules limit
If you try to run /sbin/ebtables -t nat -F J-vnet47-mac manually, does it give any better info? Or is there something logged in /var/log/messsages and/or dmesg when this happens?
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: ebtables rules limit
I'm presuming that that name is dependent on what VMs you have running at the time - vnet47 belongs to a VM with id 47 f.e.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: ebtables rules limit
Yes, this is the VDS virtual interface.
Re: ebtables rules limit
So I'd guess you need to try to add a rule for a VM that's actually running at the time.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke
Re: ebtables rules limit
With a large number of IP, VDS does not start.
See: https://bugs.centos.org/view.php?id=15383
See: https://bugs.centos.org/view.php?id=15383