Korrigáltam 1-2 dolgot, köszönöm:
nmcli connection add type bridge autoconnect yes con-name br0 ifname br0
nmcli connection modify br0 ipv4.addresses 192.168.1.223/24 ipv4.method manual
nmcli connection modify br0 ipv4.gateway 192.168.1.254
nmcli connection modify br0 ipv4.dns 8.8.8.8
nmcli connection modify br0 ipv4.dns-search t.hu
nmcli connection del enp0s3
nmcli connection add type bridge-slave autoconnect yes con-name enp1s0 ifname enp0s3 master br0
sudo nmcli connection up br0
Konténer konfig:
# Distribution configuration
lxc.include = /usr/share/lxc/config/common.conf
lxc.arch = x86_64
# Container specific configuration
lxc.rootfs.path = dir:/var/lib/lxc/fedora/rootfs
lxc.uts.name = fedora
# Network configuration
lxc.net.0.type = veth
lxc.net.0.link = br0
lxc.net.0.flags = up
lxc.net.0.ipv4.address = 192.168.1.225/24
lxc.net.0.ipv4.gateway = 192.168.1.223
lxc.net.0.hwaddr = 00:16:3e:5c:31:f8
A konténer megy: ping 8.8.8.8 ... OK
De weben nem lát ki, se a curl, se a dnf
Hoszton:
firewall-cmd --zone=FedoraServer --list-all
FedoraServer (default, active)
target: default
ingress-priority: 0
egress-priority: 0
icmp-block-inversion: no
interfaces: br0 enp0s3
sources:
services: cockpit dhcpv6-client dns http https ssh
ports: 80/tcp 443/tcp
protocols:
forward: yes
masquerade: yes
forward-ports:
source-ports:
icmp-blocks:
rich rules:
Milyen zónába célszerű tenni a br0-t? Nem is igazán engedi kivenni. Hiába engedem a http,https,dns forgalmat.
A konténerben a curl google.com és a dnf install <akarmi> csak várakozik....
[root@fedora /]# nslookup google.com
Server: 1.1.1.1
Address: 1.1.1.1#53
Non-authoritative answer:
Name: google.com
Address: 142.251.39.14
Name: google.com
Address: 2a00:1450:400d:807::200e
[root@fedora /]# curl google.com
curl: (6) Could not resolve host: google.com
:o