WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] Isolated network

To: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Subject: Re: [Xen-users] Isolated network
From: Florian Manschwetus <florianmanschwetus@xxxxxx>
Date: Fri, 04 Jun 2010 16:53:19 +0200
Cc: Xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Fri, 04 Jun 2010 07:55:11 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <46C13AA90DB8844DAB79680243857F0F06201A@xxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <46C13AA90DB8844DAB79680243857F0F062012@xxxxxxxxxxxxxxxxxxx> <4C08F9AA.1080304@xxxxxx> <46C13AA90DB8844DAB79680243857F0F06201A@xxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100410 Thunderbird/3.0.4
...
> Hi There,
> 
> Sorry, I think I worded my post wrong. What I meant was is there a way
> to make sure that the DomUs can't access the Dom0, i.e. so they are on
> an isolated network. By default in virt-manager, the Dom0 gets attached
> to each bridge created...
> 
> Also, what additional features does opensolaris support?
> 
> Thanks
> 
Depending where and how your guest disks are stored, you would have zfs
for that. At least your dom0 would benefit from zfs (bootenvironments
and frequent snapshotting of all data).
Really easy handling of vlans, bridges and other networking stuff.
(e.g. to configure a nic, you have to plumb it to the system, but you
can use an unplumbed nic for a bridge (what would address your current
question))
No idea so far how well it integrate that all with virt-manager

For udom or smarter dom0 you can use zones.

At all, I would say, you should have a closer look (read a bit at
opensolaris.org) and try it for your own if you are interested.

I have a productive xen running with two osolb134 dom0s with x64-linux,
-windows and -opensolaris as guests.

Florian

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
<Prev in Thread] Current Thread [Next in Thread>