From 8c92c404b6192b933bd27353340ca43d978a1208 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Bar=C4=B1=C5=9F=20Metin?= Date: Tue, 11 Jan 2011 13:10:51 +0100 Subject: [PATCH] disable netfilter calls for bridge interface (they cause panick on 2.6.35 anyway) --- system/template-qemu/qemu-bridge-init | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/system/template-qemu/qemu-bridge-init b/system/template-qemu/qemu-bridge-init index 005944e..b43edfa 100755 --- a/system/template-qemu/qemu-bridge-init +++ b/system/template-qemu/qemu-bridge-init @@ -31,7 +31,13 @@ start () { netstat -rn echo "========== $COMMAND: entering start - end" -# -A FORWARD -m physdev --physdev-is-bridged -j ACCEPT + # disable netfilter calls for bridge interface (they cause panick on 2.6.35 anyway) + # + # another option would be to accept the all forward packages for + # bridged interface like: -A FORWARD -m physdev --physdev-is-bridged -j ACCEPT + sysctl net.bridge.bridge-nf-call-iptables=0 + sysctl net.bridge.bridge-nf-call-ip6tables=0 + sysctl net.bridge.bridge-nf-call-arptables=0 # take extra arg for ifname, if provided [ -n "$1" ] && { INTERFACE_LAN=$1; shift ; } -- 2.47.0