WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Firewall in a guest domain?

from [Mark Williamson] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] Firewall in a guest domain?
From: Mark Williamson <mark.williamson@xxxxxxxxxxxx>
Date: Tue, 19 Jul 2005 18:17:37 +0100
Cc: Chris de Vidal <Chris@xxxxxxxxxx>
Delivery-date: Tue, 19 Jul 2005 17:14:20 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <15907.63.95.64.254.1121792062.squirrel@xxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization: University of Cambridge
References: <15907.63.95.64.254.1121792062.squirrel@xxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.8 
> Any tips on running a firewall inside a guest domain to protect all other
> domains?

Just use IPTables, as if it were a normal machine.

> Or should I run it on domain0?

You can do that too.  You can also use IPTables, EBTables, etc to restrict 
what the guests can do.

> Or should I run it externally?

If you want ;-)  You don't have to, though.

Cheers,
Mark

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] Firewall in a guest domain?, Chris de Vidal
Next by Date:  [Xen-users] Xen 2.0.6 on WBEL4 starts looping for 99, 9% CPU after some time, Michael Lang
Previous by Thread:  [Xen-users] Firewall in a guest domain?, Chris de Vidal
Next by Thread:  Re: [Xen-users] Firewall in a guest domain?, Chris de Vidal
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy