This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-devel] Other additional vnet questions

To: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [Xen-devel] Other additional vnet questions
From: "B.G. Bruce" <bgb@xxxxxxxxx>
Date: Thu, 10 Feb 2005 08:38:57 -0400
Delivery-date: Thu, 10 Feb 2005 12:40:42 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
In-reply-to: <420B35DA.2080705@xxxxxxxxxx>
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Organization: Networking Technologies NV
References: <1107965719.9884.237.camel@xxxxxxxxxxxxxxxxxxx> <420B35DA.2080705@xxxxxxxxxx>
Reply-to: bgb@xxxxxxxxx
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx

Thanks for your input, it helped a lot, as did getting a box up and
actually running it.  I think I have a better grasp of what it does, and
how it does it (for the basics).  I guess at first I was hoping it would
be more like one large virtual switch with solid VLAN capabilities.  I
see now that it is more like a normal bridge internally, but like having
one or more switches with IPSEC/*S/wan controlling your physical nics.

Some new questions: (I can hear the <groan> from here)  :-)

1)      for auth and conf security, how is keying handled?  

2)      how do you set this up other than defining the security model?

3)      How can you differentiate between a valid second xend host that is
running vnets, and a rogue xend box (unlikely at this time, but ...)
that got lucky in guessing your vnetid, and security setting.


SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
Xen-devel mailing list