WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

Re: [Xen-devel] iptables nat redirect

To: Jeff Clark <jeff@xxxxxxxxxxxxx>
Subject: Re: [Xen-devel] iptables nat redirect
From: Ian Pratt <Ian.Pratt@xxxxxxxxxxxx>
Date: Mon, 13 Oct 2003 22:08:03 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxxx, Ian.Pratt@xxxxxxxxxxxx
Delivery-date: Mon, 13 Oct 2003 22:09:20 +0100
Envelope-to: steven.hand@xxxxxxxxxxxx
In-reply-to: Your message of "Mon, 13 Oct 2003 12:43:32 PDT." <3F8B0064.4050606@xxxxxxxxxxxxx>
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx
> I have verified that it does work on domain 0, but I'm actually trying 
> to do the redirect on a different domain (non 0).
> 
> The router is using GRE to encapsulate traffic to the virtual machine.  
> (verified working)
> The GRE interface on the virtual machine decapsulates the packet. 
> (verified working)
> The iptable rule on the virtual machine matches the packet (verified 
> working)
> The iptable rule on the virtual machine redirects the packet to a local 
> port (not working)

If the packets are getting through to the domain, its hard to
imagine how we could be stuffing it up.

The exact same config (including the IP addresses) works in
domain0, right?

What happens if you redirect to localhost rather than the
domain's external IP?

Do the counters go up indicating that the redirect rule is being
used?

I guess we'll have to investigate how the redirect actually
works, but I'd be surprised if it was arch or driver specific.

Ian


-------------------------------------------------------
This SF.net email is sponsored by: SF.net Giveback Program.
SourceForge.net hosts over 70,000 Open Source Projects.
See the people who have HELPED US provide better services:
Click here: http://sourceforge.net/supporters.php
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel

<Prev in Thread] Current Thread [Next in Thread>