WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] Alternative to network-nat on Debian Squeeze with XEN4?

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] Alternative to network-nat on Debian Squeeze with XEN4?
From: Andrew Sorensen <andrewx192@xxxxxxxxx>
Date: Sun, 19 Jun 2011 21:47:58 -0700
Delivery-date: Sun, 19 Jun 2011 21:49:16 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:subject:from:reply-to:to:in-reply-to:references :content-type:date:message-id:mime-version:x-mailer :content-transfer-encoding; bh=MJ1Ab6NmSrHxDdHhffh9QwYiK/rG7YMO6pWcy8hYgGo=; b=T3ZMsM7EPlofTR3AqGZXNbXLjPG1Y5ra/t2KprBqjEHggSRQRhu6b3Yd1V7veowiVN +J6sUqIqivKwNDqVt+LGeKDO3M/GPWC+JmOMzuL9C+U0Lsl2qfEmIrOshBq3AlG+SqW2 lcqXgKZ6ur5cH/itNGbtJz/JjbH57WKLNSMh0=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:reply-to:to:in-reply-to:references:content-type:date :message-id:mime-version:x-mailer:content-transfer-encoding; b=LDqSe2cmS6lS2Ri+IXCOcjtibOywWr5PXjB7HGN03k4KauEbMSuS/46V0I9SiiFWgL geZ5h8+0bau5jp+Jf4Ejzxl0eRvxyggot41Dh1AZ68eES8o7bQpbLJRHb+eObPLiNDvJ PHtcgaN3HhsRAKuwVGBYlOdAC+cqKNYt1qZTQ=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <BANLkTi=Sz1n9RjZ__WOgeUnnBft-nZYN+g@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <1308469130.2865.3.camel@WLN-MSI-201101> <996448.44055.qm@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <1308507614.1820.11.camel@Nokia-N900-51-1> <BANLkTinVsARHLxku1NLe+yLyqkosAhGV+g@xxxxxxxxxxxxxx> <BANLkTik692SdLqQxYyfQexuCdrpgO=HQwA@xxxxxxxxxxxxxx> <1308543095.1849.17.camel@Nokia-N900-51-1> <BANLkTi=Sz1n9RjZ__WOgeUnnBft-nZYN+g@xxxxxxxxxxxxxx>
Reply-to: andrewx192@xxxxxxxxx
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
On Mon, 2011-06-20 at 11:24 +0700, Fajar A. Nugraha wrote:
> On Mon, Jun 20, 2011 at 11:11 AM, Andrew Sorensen <andrewx192@xxxxxxxxx> 
> wrote:
> >>
> >> Todd: Is this the same one used by libvirt with virbr0? Using
> >> something common would be nice, as it means NAT-networking can be
> >> treated the same way as bridge networking from Xen's perspective.
> >>
> >> Andrew: try installing virt-manager (or perhaps libvirt-bin is
> >> enough). It should create a bridge called virbr0, which you can use on
> >> domU config file (add "bridge" section to vif line).
> >>
> >> --
> >> Fajar
> 
> > I already have bridged networking working, but would like to add NAT to my
> > setup.. I'd rather stay away from libvirt as it has caused problems in the
> > past. I don't see the need to have libvirt to accomplish my requirements.
> 
> libvirt simply makes it easier to setup virbr0. If you don't use
> virt-manager/virt-install, then basically it's all libvirt does:
> create virtbr0.
> 
> If you're familiar enough with manual bridge and NAT setup, you could
> just create it manually, which would involve:
> - create a bridge with is not connected to any physical host
> - create NAT MASQUARADE rule for any traffic coming from that bridge
> - (optional) run dnsmasq to provide DHCP and DNS
> 
> With that kind of setup (either manual or created by libvirt) you can
> simply use bridge networking in Xen as usual, and it doesn't matter
> whether your uplink is already bridged or not. And the same bridge+NAT
> setup can be used for other virtualization setup as well (For example,
> I'm using libvirt to create a bridge on my Virtualbox setup, which
> Virtulbox uses later as bridged networking)
> 
That was what I was trying to do. If you visit
http://wiki.qemu.org/Documentation/Networking/NAT and take a look at
that script at the bottom, it creates a bridged interface and takes in a
a parameter to add to the NAT bridge. I'm not sure what I would need to
modify in that script to create the NAT MASQUARADE rule.



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users