This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-users] multiple nic's with vlan -> bridge or bridge -> vlan

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] multiple nic's with vlan -> bridge or bridge -> vlan
From: Javier Guerra <javier@xxxxxxxxxxx>
Date: Thu, 14 Sep 2006 07:52:45 -0500
Delivery-date: Thu, 14 Sep 2006 05:53:50 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <62b0912f0609140214r4e2b9ed2tea621d5620cdb9ac@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <AcbTAyjBBbUrcszkRyCBPyQQRxaFlg==> <005801c6d303$292793a0$0401a8c0@athlon> <62b0912f0609140214r4e2b9ed2tea621d5620cdb9ac@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.9.1
On Thursday 14 September 2006 4:14 am, Molle Bestefich wrote:
> thomas.vonsteiger@xxxxxxxxxx wrote:
> > eth0 – vlan's – bridge's – domU's
> > eth1 – vlan's – bridge's – domU's
> >
> > or
> >
> > eth0 - bridge – vlan's –domU's
> > eth1 - bridge – vlan's –domU's
> Assuming from your ASCII drawing that you terminate your VLANs inside
> the domu's in the second configuration, I'd go with the first
> configuration from a security point of view.

apart from termination worries, the second setup usually has problems.  mainly 
because it's better to put the physical eth's MTU to 1504, but the bridges 
usually choke with MTUs bigger than 1500


Attachment: pgpLLUoABIn8e.pgp
Description: PGP signature

Xen-users mailing list
<Prev in Thread] Current Thread [Next in Thread>