[Bridge] pinging other side (normal bridge ok, anonymous bridge not ok)

Srinivas M.A. srinivas.aji at gmail.com
Wed Oct 15 07:38:02 PDT 2008


> Yes, this is exactly what I need! I tried:
>
>        ifconfig dummy0 down      #  current holder of IP 192.168.1.42
>        ip link add name veth0 type veth peer name veth1
>        ifconfig veth0 192.168.1.42 up
>        ping 192.168.1.42         #  just checking :-)
>        brctl addif br0 veth1
>        iptables -A INPUT -i veth0 -j ACCEPT
>        ping 192.168.1.43
>
> but the ping still did not work. I also ACCEPTed traffic on veth1 and
> br0 but no difference. I'll flush all tables and do some more reading
> and gooling, but that must all wait till this evening.

Is veth1 up? (Maybe you need "ifconfig veth1 up".) You shouldn't need
the iptables line unless you have other iptables stuff that might
potentially block it. And there are some emails on the web referring
to issues with iptables conntrack and veth.


More information about the Bridge mailing list