我想开始监听我的服务器,但 libvirtd 无法运行。以下是错误日志:
2015-07-09 10:50:25.238+0000: 11569: info : libvirt version: 1.2.2
2015-07-09 10:50:25.238+0000: 11569: error : virAuditOpen:60 : Unable to initialize audit layer: Protocol not supported
2015-07-09 10:50:26.117+0000: 11596: error : virCommandWait:2399 : internal error: Child process (/bin/sh -c 'EBT="/sbin/ebtables"
cmd='\''$EBT -t nat -L'\''
eval res=\$\("${cmd} 2>&1"\)
if [ $? -ne 0 ]; then echo "Failure to execute command '\''${cmd}'\'' : '\''${res}'\''."; exit 1;fi
') unexpected exit status 1
2015-07-09 10:50:26.117+0000: 11596: error : ebiptablesDriverTestCLITools:4274 : Testing of ebtables command failed: Failure to execute command '$EBT -t nat -L' : 'The kernel doesn't support the ebtables 'nat' table.'.
有人知道如何处理这个问题吗?
Linux mcparadise.pl 3.14.32-xxxx-grs-ipv6-64 #1 SMP Sat Feb 7 11:35:27 CET 2015 x86_64 x86_64 x86_64 GNU/Linux
答案1
我对您的问题一无所知,但我认为错误消息的重要部分是:
'The kernel doesn't support the ebtables 'nat' table.'
我快速搜索了一下,发现一些资源
https://wiki.debian.org/BridgeNetworkConnections#ebtables_Overview http://www.keypressure.com/blog/linux-bridge-port-security/
我还看到一个名为“ebtables”的内核模块和另一个名为“ebtable_nat”的内核模块,您可以使用 modprobe 启用它们。
答案2
您需要在 Linux 内核中启用 ebtables
Ebtables 内核选项:
CONFIG_NF_NAT=y
CONFIG_NF_TABLES_BRIDGE=y
CONFIG_BRIDGE_EBT_T_FILTER=y
CONFIG_BRIDGE_EBT_T_NAT=y
CONFIG_BRIDGE_NF_EBTABLES=m