Skip to main content
Unix & Linux

You are not logged in. Your edit will be placed in a queue until it is peer reviewed.

We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.

Required fields*

5
  • 1
    probably wrong masquerade rule. what is eno1? you should edit your answer and use modern commands to give your configuration on host: ip -br link; ip -br address; ip route Commented Jun 19, 2019 at 12:10
  • eno1 is the only physical ethernet device on the host, I am using commands from various kvm/qemu related guides, I have no idea what modern command would be, nor how to find the equivalent to the old ones. I updated my question above with the ip commands you suggested. Commented Jun 19, 2019 at 13:11
  • 1
    Sorry modern commands meant ip link and ip address rather than ifconfig and ip route rather than route. That's because some features are better seen with those newer. I wanted to be sure to catch eno1 whcn appears only in one iptables rule. Commented Jun 19, 2019 at 13:12
  • You were right, I had misinterpreted the guide and wrote the MASQUERADE rule with the bridge interface instead of the physical interface - thanks to you I spotted this and it now works. - if you write it in an answer, I'll mark it as accepted. Commented Jun 19, 2019 at 13:27
  • Just did. And if you carefully read the 2nd link about netfilter and bridge, you'll know why I chose to write it as the second rule instead of the first (eg: this could bite if you ever use the specific iptables match physdev because it auto activates bridge-nf) Commented Jun 19, 2019 at 13:36