Why does virt-manager fail to create a network with an error relating to firewall rules?

Solution Verified - Updated -

Issue

  • The following (or similar) error message appears after trying to create a network in virt-manager:

    Error creating virtual network: internal error: Failed to apply firewall rules /usr/sbin/iptables -w --table filter --insert LIBVIRT_INP --in-interface virbr0 --protocol tcp --destination-port 67 --jump ACCEPT: iptables: No chain/target/match by that name.
    
  • A similar message may also appear:

    firewalld: WARNING: COMMAND FAILED: '/usr/sbin/iptables -w10 -w --table filter --delete LIBVIRT_IWP --in-interface virbr0 --protocol tcp --destination-port 53 --jump ACCEPT' failed: iptables: Bad rule (does a matching rule exist in that chain?)
    
  • Or:

    Error starting network default: The name org.fedoraproject.FirewallD1 was not provided by any .service files
    
  • This did not happen when firewalld was stopped, but happened after starting firewalld again

  • Stopping firewalld again does not stop the issue from happening

Environment

  • Red Hat Enterprise Linux 8
  • virt-manager
  • firewalld stopped then started again

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In