Snippets

Code Yellow vagrant libvirt setup

Updated by Rob Wu
View revision

File snippet.markdown Modified

  • Ignore whitespace
  • Hide word diff 
     
 Now either `export VAGRANT_DEFAULT_PROVIDER=libvirt` before `vagrant up` or run:
 
-    vagrant up --provider=libvirt
+    vagrant up --provider=libvirt
+
+## ArchLinux
+Using `iptables` and seeing errors like these in `journalctl -af` (note: using VirtualBox here)?
+
+    iptables denied: IN=vboxnet0 OUT= MAC=... SRC=10.10.10.71 DST=10.10.10.1 LEN=84 TOS=0x00 PREC=0x00 TTL=64 ID=25831 DF PROTO=UDP SPT=58215 DPT=111 LEN=64
+
+Temporarily allow access as follows:
+
+    sudo iptables -A INPUT -i vboxnet0 -s 10.10.10.71 -d 10.10.10.1 -j ACCEPT
Updated by Burhan Zainuddin
View revision

File snippet.markdown Modified

  • Ignore whitespace
  • Hide word diff 
 
 Log out and in again for the group changes to apply.
 
-Now either `export VAGRANT_DEFAULT_PROVIDER=libvirt` before `vagrant up` or run:
-
-    vagrant up --provider=libvirt
-
 # Mutate debian/jessie
 There's no default libvirt debian/jessie box available, so you have to convert it yourself:
 
 
 And this to `OUTPUT` and `FORWARD`:
 
-    outerface (virbr0 virbr1 virbr2) ACCEPT;
+    outerface (virbr0 virbr1 virbr2) ACCEPT;
+    
+Now either `export VAGRANT_DEFAULT_PROVIDER=libvirt` before `vagrant up` or run:
+
+    vagrant up --provider=libvirt
Updated by Burhan Zainuddin
View revision

File snippet.markdown Modified

  • Ignore whitespace
  • Hide word diff 
     # Install provider plugin from https://github.com/pradels/vagrant-libvirt
     vagrant plugin install vagrant-libvirt
     
+    # Install host manager from https://github.com/smdahlen/vagrant-hostmanager
+    vagrant plugin install vagrant-hostmanager
+    
 Make yourself a member of the libvirtd group:
 
     sudo gpasswd -a $USER libvirtd
Updated by Peter Bex
View revision

File snippet.markdown Modified

  • Ignore whitespace
  • Hide word diff 
 
 If you're using ferm(1), add this to `INPUT` and `FORWARD`:
 
-    interface (virbr1 virbr2) ACCEPT;
+    interface (virbr0 virbr1 virbr2) ACCEPT;
 
 And this to `OUTPUT` and `FORWARD`:
 
-    outerface (virbr1 virbr2) ACCEPT;
+    outerface (virbr0 virbr1 virbr2) ACCEPT;
Updated by Peter Bex
View revision

File snippet.markdown Modified

  • Ignore whitespace
  • Hide word diff 
 
 # Firewall
 
-If you're using ferm(1), add this to each chain with a default policy of DROP:
+If you're using ferm(1), add this to `INPUT` and `FORWARD`:
 
-    interface (virbr1 virbr2) ACCEPT;
+    interface (virbr1 virbr2) ACCEPT;
+
+And this to `OUTPUT` and `FORWARD`:
+
+    outerface (virbr1 virbr2) ACCEPT;
  2. 1
  3. 2
  4. 3
HTTPS SSH

You can clone a snippet to your computer for local editing. Learn more.