spacepaste

Paste details

reply | raw | toggle line wrapping

  1.  
  2. 2018-03-20 03:02:37.345 8840 DEBUG neutron.agent.linux.utils [req-decf717e-da13-4ecf-9e5a-50e6207ec26b - - - - -] Running command: ['sudo', '/usr/bin/neutron-rootwrap', '/etc/neutron/rootwrap.conf', 'iptables-save'] create_process /usr/lib64/python2.7/site-packages/neutron/agent/linux/utils.py:92
  3. 2018-03-20 03:02:37.607 8840 DEBUG neutron.agent.linux.utils [req-decf717e-da13-4ecf-9e5a-50e6207ec26b - - - - -] Running command: ['sudo', '/usr/bin/neutron-rootwrap', '/etc/neutron/rootwrap.conf', 'iptables-restore', '-n'] create_process /usr/lib64/python2.7/site-packages/neutron/agent/linux/utils.py:92
  4. 2018-03-20 03:02:37.877 8840 ERROR neutron.agent.linux.iptables_manager [req-decf717e-da13-4ecf-9e5a-50e6207ec26b - - - - -] IPTablesManager.apply failed to apply the following set of iptables rules:
  5. 40. -I neutron-linuxbri-sg-chain 1 -m physdev --physdev-out tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-i0b1dff3d-0
  6. 41. -I neutron-linuxbri-sg-chain 2 -m physdev --physdev-in tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-o0b1dff3d-0
  7. 42. -I neutron-linuxbri-sg-chain 3 -j ACCEPT
  8. 43. -I neutron-linuxbri-sg-fallback 1 -j DROP
  9. 44. COMMIT
  10. 45. # Completed by iptables_manager
  11. 46. # Generated by iptables_manager
  12. 47. *raw
  13. 48. :neutron-linuxbri-OUTPUT - [0:0]
  14. 49. :neutron-linuxbri-PREROUTING - [0:0]: ProcessExecutionError: Exit code: 1; Stdin: # Generated by iptables_manager
  15. *filter
  16. :neutron-filter-top - [0:0]
  17. :neutron-linuxbri-FORWARD - [0:0]
  18. :neutron-linuxbri-INPUT - [0:0]
  19. :neutron-linuxbri-OUTPUT - [0:0]
  20. :neutron-linuxbri-i0b1dff3d-0 - [0:0]
  21. :neutron-linuxbri-local - [0:0]
  22. :neutron-linuxbri-o0b1dff3d-0 - [0:0]
  23. :neutron-linuxbri-s0b1dff3d-0 - [0:0]
  24. :neutron-linuxbri-sg-chain - [0:0]
  25. :neutron-linuxbri-sg-fallback - [0:0]
  26. -I FORWARD 1 -j neutron-filter-top
  27. -I FORWARD 2 -j neutron-linuxbri-FORWARD
  28. -I INPUT 1 -j neutron-linuxbri-INPUT
  29. -I OUTPUT 1 -j neutron-filter-top
  30. -I OUTPUT 2 -j neutron-linuxbri-OUTPUT
  31. -I neutron-filter-top 1 -j neutron-linuxbri-local
  32. -I neutron-linuxbri-FORWARD 1 -m physdev --physdev-out tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-sg-chain
  33. -I neutron-linuxbri-FORWARD 2 -m physdev --physdev-in tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-sg-chain
  34. -I neutron-linuxbri-INPUT 1 -m physdev --physdev-in tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-o0b1dff3d-0
  35. -I neutron-linuxbri-i0b1dff3d-0 1 -m state --state RELATED,ESTABLISHED -j RETURN
  36. -I neutron-linuxbri-i0b1dff3d-0 2 -d 192.168.1.10/32 -p udp -m udp --sport 67 --dport 68 -j RETURN
  37. -I neutron-linuxbri-i0b1dff3d-0 3 -d 255.255.255.255/32 -p udp -m udp --sport 67 --dport 68 -j RETURN
  38. -I neutron-linuxbri-i0b1dff3d-0 4 -p icmp -j RETURN
  39. -I neutron-linuxbri-i0b1dff3d-0 5 -p tcp -m tcp --dport 22 -j RETURN
  40. -I neutron-linuxbri-i0b1dff3d-0 6 -m set --match-set NIPv4d85456b4-19fd-4f67-a2fd- src -j RETURN
  41. -I neutron-linuxbri-i0b1dff3d-0 7 -m state --state INVALID -j DROP
  42. -I neutron-linuxbri-i0b1dff3d-0 8 -j neutron-linuxbri-sg-fallback
  43. -I neutron-linuxbri-o0b1dff3d-0 1 -s 0.0.0.0/32 -d 255.255.255.255/32 -p udp -m udp --sport 68 --dport 67 -j RETURN
  44. -I neutron-linuxbri-o0b1dff3d-0 2 -j neutron-linuxbri-s0b1dff3d-0
  45. -I neutron-linuxbri-o0b1dff3d-0 3 -p udp -m udp --sport 68 --dport 67 -j RETURN
  46. -I neutron-linuxbri-o0b1dff3d-0 4 -p udp -m udp --sport 67 --dport 68 -j DROP
  47. -I neutron-linuxbri-o0b1dff3d-0 5 -m state --state RELATED,ESTABLISHED -j RETURN
  48. -I neutron-linuxbri-o0b1dff3d-0 6 -j RETURN
  49. -I neutron-linuxbri-o0b1dff3d-0 7 -m state --state INVALID -j DROP
  50. -I neutron-linuxbri-o0b1dff3d-0 8 -j neutron-linuxbri-sg-fallback
  51. -I neutron-linuxbri-s0b1dff3d-0 1 -s 192.168.1.10/32 -m mac --mac-source FA:16:3E:78:64:1B -j RETURN
  52. -I neutron-linuxbri-s0b1dff3d-0 2 -j DROP
  53. -I neutron-linuxbri-sg-chain 1 -m physdev --physdev-out tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-i0b1dff3d-0
  54. -I neutron-linuxbri-sg-chain 2 -m physdev --physdev-in tap0b1dff3d-04 --physdev-is-bridged -j neutron-linuxbri-o0b1dff3d-0
  55. -I neutron-linuxbri-sg-chain 3 -j ACCEPT
  56. -I neutron-linuxbri-sg-fallback 1 -j DROP
  57. COMMIT
  58. # Completed by iptables_manager
  59. # Generated by iptables_manager
  60. *raw
  61. :neutron-linuxbri-OUTPUT - [0:0]
  62. :neutron-linuxbri-PREROUTING - [0:0]
  63. -I OUTPUT 1 -j neutron-linuxbri-OUTPUT
  64. -I PREROUTING 1 -j neutron-linuxbri-PREROUTING
  65. -I neutron-linuxbri-PREROUTING 1 -m physdev --physdev-in brq5b7cb146-99 -m comment --comment "Set zone for b1dff3d-04" -j CT --zone 1
  66. -I neutron-linuxbri-PREROUTING 2 -i brq5b7cb146-99 -m comment --comment "Set zone for b1dff3d-04" -j CT --zone 1
  67. -I neutron-linuxbri-PREROUTING 3 -m physdev --physdev-in tap0b1dff3d-04 -m comment --comment "Set zone for b1dff3d-04" -j CT --zone 1
  68. COMMIT
  69. # Completed by iptables_manager
  70. ; Stdout: ; Stderr: iptables-restore: line 44 failed
  71.  
Powered by spacepaste. Paste removal.