WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Bridge vs. Route configuration?

from [Patrick Wolfe] [Permanent Link][Original]
To: NAHieu <nahieu@xxxxxxxxx>
Subject: Re: [Xen-users] Bridge vs. Route configuration?
From: Patrick Wolfe <pwolfe@xxxxxxxxxxxxxx>
Date: Fri, 09 Jun 2006 06:01:32 -0400
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Mon, 12 Jun 2006 02:34:46 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <5d7aca950606081202i13d8dadep577a394055764194@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <5d7aca950606081202i13d8dadep577a394055764194@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird 1.5.0.2 (X11/20060522) 
NAHieu wrote:
> In Xen, by default the domains are configured to use bridge (with
> network-bridge script). But there is network-route, and this option
> also allows us to connect domains.
> 
> But I don't see what is the advantage of Route config over Bridge. In
> which case we should use Route method instead?


network-route script pros:
- complete control of network traffic from each domU
- bridge-utils not needed

network-route cons:
- dom0 must become router for all domUs.
- harder to isolate dom0
- wastes IP addresses
- xen script ip addressing and routing can be difficult to understand


network-bridge pros:
- easier concepts to understand
- all domUs can utilize existing LAN DHCP services to obtain address
- allows user the flexibility to create additional, isolate vlan
internal infrastructure that only the domUs can access.
- dom0 can be totally isolated, or just protect itself with firewall sw

network-bridge cons:
- dom0 still involved in handling all domU packets, via bridge-utils,
instead of routing stack.  firewall sw must be xen aware
- harder to firewall each domU from each other, each domU has to protect
itself



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] Windows/XP, Forrest Aldrich
Next by Date:  [Xen-users] Kernel restarts without error on boot, Quintin Russ
Previous by Thread:  Re: [Xen-users] Bridge vs. Route configuration?, Emiliano Gabrielli (aka AlberT)
Next by Thread:  [Xen-users] Workstation on xen, Tobias
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy