I am not familiar enough with Xen routing to help you, but I can
tell you that there are users out there using Xen with routing and NAT.
Also, there has been discussion of setting up a domU as a firewall in the
last 24 hours where it would be the only exposed host and dom0 would be on
an internal bridge. In this scenario, you could use bridging and have the
firewall domU be a NAT domU.
Dustin
-----Original Message-----
From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
[mailto:xen-users-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of AlannY
Sent: Thursday, May 07, 2009 11:33
To: Fajar A. Nugraha
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] Help me to set up network (routes)
Fajar A. Nugraha wrote:
> Can you elaborate why you don't want to use bridging?
> IMHO it's easier to setup, and you can still use dom0 as router. For
> example, libvirt on RHEL create a NAT network for domU,
> 192.168.122.0/24, with 192.168.122.1 located on dom0's virbr.
So, my ISP giving my address 10.9.3.92/24. When I'm using bridging, for
every DomU I must assign address from my ISP's network (10.9.3.0/24),
for example 10.9.3.93. In that configuration everything works, I can
ping IPS's LAN and Dom0 (10.9.3.92).
But, my IPS give me just ONE IP - 10.9.3.92. I can't use any other
address. I'm afraid that my configuration will invoke an "IP address
conflict". And, in either case, if I would like to connect to 10.9.3.93
from my Dom0? Where it will connect? to DomU or to real user of my ISP?
So, after 2 days of bridging magic, I decide to drop that idea and now
looking for another solution.
Early, I have used Qemu and there was that configuration for net: tap0
is up and then some masquerading with iptables. Everything works. But, I
can't adapt this solution to Xen (yet?).
That is ;-)
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
|