WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Migrating domUs behind a firewall backend domU

from [Jan Behrend] [Permanent Link][Original]
To: "Brian Stempin" <brian.stempin@xxxxxxxxx>
Subject: Re: [Xen-users] Migrating domUs behind a firewall backend domU
From: Jan Behrend <jbehrend@xxxxxxxxxxxxxxxxx>
Date: Wed, 23 Apr 2008 09:42:46 +0200
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 23 Apr 2008 00:43:28 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <351785350804230001q5f7bf951g657ad7bdbc9ef438@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization: Max-Planck-Institut für Radioastronomie
References: <200804141354.39962.jbehrend@xxxxxxxxxxxxxxxxx> <351785350804230001q684f35dfnad561f997955a0b6@xxxxxxxxxxxxxx> <351785350804230001q5f7bf951g657ad7bdbc9ef438@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: KMail/1.9.5 
On Wednesday 23 April 2008 09:01, you wrote:
> Whoops, forgot to post to the list:
>
> I'm just taking a totally blind stab, but here it goes:
>
> If I'm reading correctly, your Firewall DomU is providing NAT for the other
> DomUs.  Is the IP interface that faces the other DomUs the same IP on both
> machines?  IE, do ALL DomUs, regardless of physical machine, use the same
> gateway IP address?

Thanks for the answer.
The netbackend domUs are _not_ doing NAT.  They just keep unwanted traffic 
out.  If I flush all iptables rules and merely do forwarding on the 
netbackend domUs I get the same effect.
To answer your question: Yes, all domUs, regardless of their physical host, 
use the same gateway IP.  In fact all domUs and the physical machines are on 
the same subnet.

Jan

-- 
Jan Behrend
Max-Planck-Institut fuer Radioastronomie
Abteilung fuer Infrarot-Technologie
Auf dem Huegel 69, D-53121 Bonn (Germany)
Tel: (+49) 228 525 319, Fax: (+49) 228 525 411
jbehrend@xxxxxxxxxxxxxxxxx http://www.mpifr-bonn.mpg.de

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Migrating domUs behind a firewall backend domU, Brian Stempin
Next by Date:  Re: [Xen-users] VNC for Linux - Console?, MS
Previous by Thread:  Re: [Xen-users] Migrating domUs behind a firewall backend domU, Brian Stempin
Next by Thread:  [Xen-users] OT: mounted img file read-only., James Pifer
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy