Recent versions of libvirt have code to use lokkit --custom-rules to ensure that libvirt's iptables rules are retained even if e.g. the user changes the firewall config or restarts iptables. However, we don't currently build libvirt with this support. The attached patch should fix that. Note: I've only tested this on Fedora 9, but AFAIK it should work on Fedora 8 too.
Created attachment 303488 [details] libvirt-lokkit.patch
Hum, that's not in the upstream spec file, that's the first thing to do, otherwise looks fine to me, obviously, Daniel
Okay, built libvirt-0.4.2-2.fc9 and libvirt-0.4.2-2.fc10 Not sending the patch upstream, since the upstream spec file seems to not be including fedora specific stuff and this is fedora specific Not requesting the build be tagged in dist-f9 because it should be fine to just have as an update * Mon Apr 28 2008 Mark McLoughlin <markmc> - 0.4.2-2.fc9 - Enable lokkit support (#443796)