WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] virtual routing issue

from [Michal Ludvig] [Permanent Link][Original]
To: Ernie Fontes <ernie@xxxxxxxxxxxxxx>
Subject: Re: [Xen-users] virtual routing issue
From: Michal Ludvig <michal@xxxxxxxx>
Date: Sat, 23 Jul 2005 12:26:27 +1200
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Sat, 23 Jul 2005 00:24:50 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <60D45469A1AAD311A04C009027B6BF680570DA68@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <60D45469A1AAD311A04C009027B6BF680570DA68@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0 (X11/20041207) 
Ernie Fontes wrote:

> My machine (192.168.103.23) is on the network with my router
> (192.168.103.1).  The virtual router, tiara, has to connect my
> 192.168.103.* network with the virtual 10.0.0.* network which comprises
> two other virtual domains, tophat and bowler.
> 
> The three virtual machines are all running Fedora (hence the names).
> 
> I can ping between tiara, tophat, and bowler.  I can also ping from
> tiara out to 192.168.103.1, 192.168.103.23, and the Internet.
> 
> However, I cannot ping 192.168.103.23, 192.168.103.1, or the Internet
> from tophat or bowler (which are routed through tiara).

1) Have you got IPforwarding enabled on Tiara? Do:
~# sysctl -w net.ipv4.ip_forward=1

2) Have you got correct routing tables on other hosts of your network
(most importantly on the router .103.1)? There must be an explicit route
to 10.0.0.0/24, e.g. do this on the router:
~# ip route add 10.0.0.0/24 via 192.168.103.30

Then you should be able to ping the router from Bowler/Tophat.

3) For accessing the internet from domains you need to makesure that the
router is SNATing (or masquerading) 10.0.0.0/24 to your public IP
address. Check your iptables rules for that (assuming your router is
Linux of course).

4) As an excercise read something about "proxy arp" and try to deploy
bowler/tophat directly on 192.168.103.0/24 network. With that approach
there would be no other changes necessary to your network ;-)

HTH,

Michal Ludvig
-- 
* Personal homepage: http://www.logix.cz/michal




_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re:[Xen-users] Which distributed file system for xen hosts/guests?, John Fairbairn
Next by Date:  [Xen-users] (2nd try) domain died after xend.console.connect, Matthew J. Harmon
Previous by Thread:  [Xen-users] virtual routing issue, Ernie Fontes
Next by Thread:  [Xen-users] (2nd try) domain died after xend.console.connect, Matthew J. Harmon
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy