From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on sa.int.altlinux.org X-Spam-Level: X-Spam-Status: No, score=-1.4 required=5.0 tests=AWL,BAYES_00, DNS_FROM_OPENWHOIS autolearn=no version=3.2.5 From: Sergey Organization: Home To: "ALT Linux sysadmins' discussion" Date: Wed, 24 Mar 2010 00:08:13 +0400 User-Agent: KMail/1.9.10 References: <4BA900E8.6050102@nevod.ru> In-Reply-To: <4BA900E8.6050102@nevod.ru> MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 8bit Content-Disposition: inline Message-Id: <201003240008.14425.a_s_y@sama.ru> Subject: Re: [Sysadmins] NAT inside VE X-BeenThere: sysadmins@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: ALT Linux sysadmins' discussion List-Id: ALT Linux sysadmins' discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Mar 2010 20:08:26 -0000 Archived-At: List-Archive: On Tuesday 23 March 2010, Rinat Shigapov wrote: > Что-то не заводится nat внутри VE. Ядро 2.6.27-ovz-smp-alt12 x86_64. В > конфигурации VE указал IPTABLES="", т.е. использовать все возможные > модули iptables. /etc/vz/vz.conf: ## IPv4 iptables kernel modules IPTABLES="ipt_REJECT ipt_tos ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length iptable_nat ipt_conntrack ipt_LOG" Но это 2.6.18-ovz-rhel, с 2.6.27-ovz не пробовал, кажется... -- С уважением, Сергей a_s_y@sama.ru