WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] To use ebtables or iptables

from [Grant McWilliams] [Permanent Link][Original]
To: Tapas Mishra <mightydreams@xxxxxxxxx>
Subject: Re: [Xen-users] To use ebtables or iptables
From: Grant McWilliams <grantmasterflash@xxxxxxxxx>
Date: Sat, 10 Apr 2010 11:44:24 -0700
Cc: Xen List <xen-users@xxxxxxxxxxxxxxxxxxx>, linux-poweredge@xxxxxxxx
Delivery-date: Sat, 10 Apr 2010 11:46:01 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :from:date:received:message-id:subject:to:cc:content-type; bh=gUINZVJWdVYPp3GcRsyJI6jGWZhgl+m9Fr03v3bFasc=; b=qWyOFkQ7n9sElYXueNu8z0MLyVCowt9L0YfCyn7pS35w5QoerEtFXTqitevJZLLSPm JwIA3PGURzaQSJv3JUUIMY5/2nOAcLCtqmNzZF/9vp1cNfjG4o+xHx+nWONWM90J2CJ4 js6TvJTceB/R9xFhh2yTi3LT3CT/baorFB8a0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=AxumBjs7PfN+YWJxzFFoBvf9eGgRF3Ta4jp0jeIGJF8CkwH47T1CrOJJ2xmHJWJAsx f+15TPJ+edQ3vfwC9I88tDo5LUXH6mg5vT8yC2zJG8LjlUDhNTM1zab3pactIW2epY2k pB0Ti7o+u2fXQLwYkXCoqkgfch/tG+NcjdHUQ=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <x2ke2d2e5831004101042m9050ce5fz61ab644d5d8b1dc3@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <x2ke2d2e5831004101042m9050ce5fz61ab644d5d8b1dc3@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx

On Sat, Apr 10, 2010 at 10:42 AM, Tapas Mishra <mightydreams@xxxxxxxxx> wrote:
I have DomU instances running on a Dom0 which has a public IP I want
to be able to provide internet to these DomU instances also.So I had
thought of setting a squid proxy .

I am aware of setting IPTABLES I have done it on non xen machines.Some
one who have done it on a server that runs Xen please share some thing
as how should I go for it.
The Dom0 will be having a public IP and I want all the DomU traffic to
masquarade through it.
Some sample configurations may help.
http://ebtables.sourceforge.net/br_fw_ia/br_fw_ia.html
--
Tapas


Is your intention for those DomU's to be accessed from the outside or just that they can access the outside?
If it's the latter you can use the network-nat and vif-nat scripts included in Xen. If it's the former you need to have
all DomUs come up on the same bridge, then create a dummy0 interface and add it to that bridge and create
firewall rules to direct traffic in and allow it back out.


Grant McWilliams

Some people, when confronted with a problem, think "I know, I'll use Windows."
Now they have two problems.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] no bridge is shown by ifconfig on Xen Debian, Grant McWilliams
Next by Date:  Re: [Xen-users] no bridge is shown by ifconfig on Xen Debian, Tapas Mishra
Previous by Thread:  [Xen-users] To use ebtables or iptables, Tapas Mishra
Next by Thread:  Re: [Xen-users] To use ebtables or iptables, Tapas Mishra
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy