19 Nov
2017
19 Nov
'17
17:47
Wayne Patton wrote:
OK I found a way around it . . . I created a hook script: /etc/libvirt/hooks/network with the contents of:
#!/bin/bash /usr/sbin/iptables -F
It removes the iptables rules when libvirtd starts.
If someone has a better idea, I am certainly open to it.
Try to understand what libvirt is doing and why: https://libvirt.org/formatnwfilter.html IMHO it's a set of pretty powerful security features. Ciao, Michael.