WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

[Xen-users] Xen 3.3 bridged-networking

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] Xen 3.3 bridged-networking
From: "Maximilian W. Zeller" <mawize@xxxxxxxxx>
Date: Mon, 24 Nov 2008 10:20:01 +0100
Delivery-date: Mon, 24 Nov 2008 01:20:46 -0800
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type; bh=scHQQHBkChEh9I6jDv3isq5jQ6yUc9Rwehp/1VsPEcI=; b=EF7fb0U5tCIa7j0PL9OlF/qg8KmafWL/dNv13LLhnJHc/SNZRAu+k5Mlwf3DKG1zF8 SCxmiB02ikEEfFBrp8LVlYPYx/G0bXCQ/XhcE74YLY18cUOVelctj56TDFssYuj8ao2K fbJgFvgFXWLXmux9j0zAZuNJCgnTvKNVVVRFo=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=LpieJyxfNFwwgsnaYWK8Yn2csi8B+AIEHoUr1XsrO5WKF62aJ6jqRrDX280vpZ5zM1 WATiNnBolcVntSoxfZ9enWKRy8m9NgeQOKXvo6Hujvp1FQC0WpXRYjZGP5OMJjXjTApf c/MIQwfh4CvDhn6+2cYYfLyl1HOd4CzXkM2pU=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Hi

I don't quite understand the new xen networking. We use network-bridge! Everything works fine except that an iptables firewall on dom0 blocks all my domU. In my firewall settings i use eth0. I figured out that eth0 is the bridge but where is the interface for dom0? I want my firewall setting to only apply to dom0 interface!
Since there is not anything like vif0.0 i don't know on which interface to set up my firewall. Any suggestions how to solve this problem?

$ ifconfig
eth0      Link encap:Ethernet  HWaddr 00:1E:8C:AC:00:3E 
          inet addr:XXX.XXX.XXX.XXX  Bcast:XXX.XXX.XXX.255  Mask:255.XXX.XXX.0
          inet6 addr: fe80::21e:8cff:feac:3e/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:10875232 errors:0 dropped:0 overruns:0 frame:0
          TX packets:630670 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:560653230 (534.6 MiB)  TX bytes:126624363 (120.7 MiB)

lo        Link encap:Local Loopback 
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:11 errors:0 dropped:0 overruns:0 frame:0
          TX packets:11 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:800 (800.0 b)  TX bytes:800 (800.0 b)

peth0     Link encap:Ethernet  HWaddr 00:1E:8C:AC:00:3E 
          inet6 addr: fe80::21e:8cff:feac:3e/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:18782863 errors:0 dropped:0 overruns:0 frame:0
          TX packets:955865 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:5366361211 (4.9 GiB)  TX bytes:164506458 (156.8 MiB)
          Interrupt:17 Base address:0x8000

tap9.0    Link encap:Ethernet  HWaddr B6:E6:93:CB:50:0F 
          inet6 addr: fe80::b4e6:93ff:fecb:500f/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:9419 errors:0 dropped:0 overruns:0 frame:0
          TX packets:7884657 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:500
          RX bytes:1101856 (1.0 MiB)  TX bytes:515896160 (491.9 MiB)

vif3.0    Link encap:Ethernet  HWaddr FE:FF:FF:FF:FF:FF 
          inet6 addr: fe80::fcff:ffff:feff:ffff/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:37361 errors:0 dropped:0 overruns:0 frame:0
          TX packets:11325864 errors:0 dropped:938 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:4752571 (4.5 MiB)  TX bytes:1377423212 (1.2 GiB)

vif9.0    Link encap:Ethernet  HWaddr FE:FF:FF:FF:FF:FF 
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)


Thanks for all your help
Max

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
<Prev in Thread] Current Thread [Next in Thread>