Hi,
we've changed kernel 2.6.24 to 2.6.18 per this recommendation:
http://forum.proxmox.com/threads/3225-Difference-between-OpenVZ-2-6-18-and-2-6-24
Everything is working fine, except one thing: iptables in OpenVZ guests.
kernel 2.6.18-2-pve
openvzcontainer:~# iptables -L -n -t nat
iptables v1.4.2: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
openvzhost:~# cat /etc/vz/conf/VMID.conf | grep IPTABLES
IPTABLES="ip_tables iptable_filter iptable_mangle ipt_limit ipt_multiport ipt_tos ipt_TOS ipt_REJECT ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_LOG ipt_length ip_conntrack ip_conntrack_ftp ipt_state iptable_nat ip_nat_ftp "
openvzhost:~# cat /etc/modules
ip_nat
xt_tcpudp
ip_conntrack ip_conntrack_enable_ve0=1
When using kernel 2.6.24-10-pve everything is ok, we can use iptables in guets.
What are we doing wrong? Is it possible to make iptables work in guest using kernel 2.6.18?
Thanks,
Kuba
we've changed kernel 2.6.24 to 2.6.18 per this recommendation:
http://forum.proxmox.com/threads/3225-Difference-between-OpenVZ-2-6-18-and-2-6-24
Everything is working fine, except one thing: iptables in OpenVZ guests.
kernel 2.6.18-2-pve
openvzcontainer:~# iptables -L -n -t nat
iptables v1.4.2: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
openvzhost:~# cat /etc/vz/conf/VMID.conf | grep IPTABLES
IPTABLES="ip_tables iptable_filter iptable_mangle ipt_limit ipt_multiport ipt_tos ipt_TOS ipt_REJECT ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_LOG ipt_length ip_conntrack ip_conntrack_ftp ipt_state iptable_nat ip_nat_ftp "
openvzhost:~# cat /etc/modules
ip_nat
xt_tcpudp
ip_conntrack ip_conntrack_enable_ve0=1
When using kernel 2.6.24-10-pve everything is ok, we can use iptables in guets.
What are we doing wrong? Is it possible to make iptables work in guest using kernel 2.6.18?
Thanks,
Kuba