WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Xen-users] DMZ on xen with Dom0 as gw

from [Federico Tomassini] [Permanent Link][Original]
To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] DMZ on xen with Dom0 as gw
From: Federico Tomassini <effetom@xxxxxxxxx>
Date: Fri, 14 Jul 2006 16:57:31 +0200
Delivery-date: Fri, 14 Jul 2006 07:57:27 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization: /dev/null
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx 
Hi alls,

I have to publish DomUs on the Net, with public IPs.

On my host, eth0 is configured with aliases to serve all these IPs:

               eth0   = 192.168.0.12
Net <-> Dom0-  eth0:1 = 192.168.0.13
               eth0:2 = 192.168.0.14

I would configure DomUs to have 10.0.100.0/24 IP address, and to
forward ( source/dest-natting) traffic, simulating a DMZ with Dom0 as
gateway:
   
            Dom0
        192.168.0.12  
Net <-> 192.168.0.13  <---> 10.0.100.2 DomU1
        192.168.0.14  <---> 10.0.100.3 DomU2

I have also to run a dhcp server for DomUs.

I read a lot of Docs, and ML archive.
I tried to apply these solutions, but without success.

I would like to ask which is the best way to create such scenario (and
first of all, is It a good scenario?)

For now, I tried to run dhcpd on dummy0 and to bridge DomUs on dummy0.
Then natting with iptables on Dom0.

Maybe I'm following a wrong way and my problems arise for that.

BR

efphe



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Port forwarding problems, Norman Zimmer
Next by Date:  Re: [Xen-users] Xen migration, Thorolf Godawa
Previous by Thread:  E-MAIL ADDRESS WON THE PRIZE!!, NOTIFICATION
Next by Thread:  Re: [Xen-users] DMZ on xen with Dom0 as gw, Norman Zimmer
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy