6
edits
Changes
→Iptables error
Actually, since you do not run anything inside the temporary VE (777) which requires an IP address, you can omit the step of setting VE's OSTEMPLATE, an IP address and a hostname. This was done for Debian specifically because you have to run <tt>apt update</tt> and <tt>apt upgrade</tt> commands, which requires network to be working. So you can edit that out to simplify things. I have not done it yet because you might have other reasons to leave it. --[[User:Kir|Kir]] 15:43, 6 June 2006 (EDT)
: I have actually removed these settings from the text, since it looks like they are not needed, and you forgot to run <tt>vzctl set --ipdel</tt> so OS template cache ends up with the IP address which is wrong. So I followed the easy path and instead of adding the procedure of removing VE IP I just removed the adding of it! Also note that setting OSTEMPLATE is actually needed for <tt>vzctl set --ipadd</tt> to work. --[[User:Kir|Kir]] 16:15, 6 June 2006 (EDT)
== Typo + IPtables ==
I corrected a typo.
Also, I forgot to mention that IPtables needs modules from the running kernel in the VE to work, so
before cache creation or after VE creation the /lib/modules should be created with the needed iptables modules. --[[User:Scythe|Scythe]] 22:54, 6 June 2006 (CET)
: There is actually no need for iptables modules to be available inside VE for iptables to work, so you got it wrong. I have reverted your last change. No kernel modules are loaded inside VE at all -- so you do not need modutils as well. Also, can you please specify the summary then you are making a change? Otherwise it's not clear from the history page what have changed. It makes sense to select an option "Prompt me when entering a blank edit summary" in your preferences->editing. --[[User:Kir|Kir]] 05:05, 7 June 2006 (EDT)
:: You are right, I accidentally mixed the openvz.org "official" template cache's root filesystem with my host's own, so I mislooked the /lib/modules directory... I also corrected the typo again (a missing ")" in the "Moving a Sl. installation into a VE" part) which You have included again when reverting my erroneous notice about iptables modules. --[[User:Scythe|Scythe]] 11:26, 7 June 2006 (CET)
== Iptables error ==
Hi all,
I have installed a Slackware 11 and all is ok.
The VE based upon che slackware 11 cache returns an error when I add an Iptables rule:
<code>iptables -A INPUT -m state --state ESTABLISHED -j ACCEPT</code>
<code>iptables: Unknown error 4294967295</code>
I think that it depends on the <code>-m state</code> but I do not know how to solve it.
Any suggestions?
*SOLVED*
In the <VE>.conf (or in the vz.conf) I must include <code>IPTABLES="ipt_state ..."</code>