XGQT's blog: Posts tagged 'libvirt'
urn:https-xgqt-gitlab-io:-blog-tags-libvirt-html
2023-04-09T22:28:38Z
Libvirt with bridge network
urn:https-xgqt-gitlab-io:-blog-posts-2023-04-09-libvirt-with-bridge-network
2023-04-09T22:28:38Z
2023-04-09T22:28:38Z
Maciej Barć
<h1 id="user-mode">User-mode</h1>
<p>By default you would probably have something like this, the user-mode network:</p>
<div class="brush: xml">
<div class="source">
<table class="sourcetable">
<tbody>
<tr>
<td class="linenos">
<div class="linenodiv">
<pre><span class="normal">1</span>
<span class="normal">2</span>
<span class="normal">3</span>
<span class="normal">4</span>
<span class="normal">5</span></pre></div></td>
<td class="code">
<div>
<pre><span></span><span class="nt"><interface</span><span class="w"> </span><span class="na">type=</span><span class="s">"user"</span><span class="nt">></span>
<span class="w"> </span><span class="nt"><mac</span><span class="w"> </span><span class="na">address=</span><span class="s">"00:00:00:00:00:00"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><model</span><span class="w"> </span><span class="na">type=</span><span class="s">"virtio"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><address</span><span class="w"> </span><span class="na">type=</span><span class="s">"pci"</span><span class="w"> </span><span class="na">domain=</span><span class="s">"0x0000"</span><span class="w"> </span><span class="na">bus=</span><span class="s">"0x01"</span><span class="w"> </span><span class="na">slot=</span><span class="s">"0x00"</span><span class="w"> </span><span class="na">function=</span><span class="s">"0x0"</span><span class="nt">/></span>
<span class="nt"></interface></span>
</pre></div></td></tr></tbody></table></div>
</div>
<h1 id="bridge">Bridge</h1>
<p>Bridges can be easily created using the NetworkManager’s TUI tool called <code>nmtui</code>.</p>
<h2 id="bridge-xml-configuration-for-libvirt">Bridge XML configuration for Libvirt</h2>
<div class="brush: xml">
<div class="source">
<table class="sourcetable">
<tbody>
<tr>
<td class="linenos">
<div class="linenodiv">
<pre><span class="normal">1</span>
<span class="normal">2</span>
<span class="normal">3</span>
<span class="normal">4</span>
<span class="normal">5</span>
<span class="normal">6</span>
<span class="normal">7</span>
<span class="normal">8</span></pre></div></td>
<td class="code">
<div>
<pre><span></span><span class="nt"><interface</span><span class="w"> </span><span class="na">type=</span><span class="s">"bridge"</span><span class="nt">></span>
<span class="w"> </span><span class="nt"><mac</span><span class="w"> </span><span class="na">address=</span><span class="s">"00:00:00:00:00:00"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><source</span><span class="w"> </span><span class="na">bridge=</span><span class="s">"br1"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><target</span><span class="w"> </span><span class="na">dev=</span><span class="s">"vnet2"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><model</span><span class="w"> </span><span class="na">type=</span><span class="s">"virtio"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><alias</span><span class="w"> </span><span class="na">name=</span><span class="s">"net0"</span><span class="nt">/></span>
<span class="w"> </span><span class="nt"><address</span><span class="w"> </span><span class="na">type=</span><span class="s">"pci"</span><span class="w"> </span><span class="na">domain=</span><span class="s">"0x0000"</span><span class="w"> </span><span class="na">bus=</span><span class="s">"0x06"</span><span class="w"> </span><span class="na">slot=</span><span class="s">"0x00"</span><span class="w"> </span><span class="na">function=</span><span class="s">"0x0"</span><span class="nt">/></span>
<span class="nt"></interface></span>
</pre></div></td></tr></tbody></table></div>
</div>
<h1 id="sysctl-options">Sysctl options</h1>
<p>Be sure the following options are enabled (<code>1</code>):</p>
<ul>
<li><code>net.ipv4.ip_forward</code></li>
<li><code>net.ipv4.conf.all.send_redirects</code></li></ul>
<p>and the following options are disabled (<code>0</code>):</p>
<ul>
<li><code>net.bridge.bridge-nf-call-iptables</code></li></ul>