cloudstack-users-cn mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From huangjy <huan...@casc.ac.cn>
Subject 高级网络模式下VM无法访问外网
Date Tue, 23 Apr 2013 05:55:15 GMT
大家好,我在高级网络模式下VM无法访问外网,VM之间是可以访问的,进入到虚拟路由是可以访问外网的,虚拟路由的iptables配置如下:
root@r-17-VM:~#  iptables  -L -n
Chain INPUT (policy DROP)
target     prot opt source               destination         
NETWORK_STATS  all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            224.0.0.18          
ACCEPT     all  --  0.0.0.0/0            225.0.0.50          
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     icmp --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0           udp dpt:67 
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0           udp dpt:53 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:3922 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:8080 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0           state NEW tcp dpt:80 

Chain FORWARD (policy DROP)
target     prot opt source               destination         
NETWORK_STATS  all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state NEW 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.50        state RELATED,ESTABLISHED /*
10.0.74.190:3389:3389 */ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.50        tcp dpt:3389 state NEW /* 10.0.74.190:3389:3389
*/ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.36        state RELATED,ESTABLISHED /*
10.0.74.190:22:22 */ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.36        tcp dpt:22 state NEW /* 10.0.74.190:22:22
*/ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.105       state RELATED,ESTABLISHED /*
10.0.74.190:3390:3390 */ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.105       tcp dpt:3389 state NEW /* 10.0.74.190:3390:3390
*/ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.171       state RELATED,ESTABLISHED /*
10.0.74.190:3391:3391 */ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.171       tcp dpt:3389 state NEW /* 10.0.74.190:3391:3391
*/ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.251       state RELATED,ESTABLISHED /*
10.0.74.190:3392:3392 */ 
ACCEPT     tcp  --  0.0.0.0/0            192.168.3.251       tcp dpt:3389 state NEW /* 10.0.74.190:3392:3392
*/ 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           state RELATED,ESTABLISHED 
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0           

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         
NETWORK_STATS  all  --  0.0.0.0/0            0.0.0.0/0           

Chain NETWORK_STATS (3 references)
target     prot opt source               destination         
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           all  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           
           tcp  --  0.0.0.0/0            0.0.0.0/0           

请问是什么原因使VM无法访问外网,如何解决?谢谢!!



huangjy
Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message