xen-users

[Top] [All Lists]

Re: [Xen-users] NAT on 3.0.2?

from [Tom Brown]

[Permanent Link][Original]

To:	xen-users@xxxxxxxxxxxxxxxxxxx
Subject:	Re: [Xen-users] NAT on 3.0.2?
From:	Tom Brown <tbrown@xxxxxxxxxxxxx>
Date:	Wed, 9 Aug 2006 14:14:10 -0700 (PDT)
Delivery-date:	Wed, 09 Aug 2006 14:15:11 -0700
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxx
In-reply-to:	<5bb00b3f0608091359t15686518y2781e029a24dccdb@xxxxxxxxxxxxxx>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References:	<65409.172.16.100.0.1155005103.squirrel@xxxxxxxxxxx> <5bb00b3f0608091359t15686518y2781e029a24dccdb@xxxxxxxxxxxxxx>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx

On Wed, 9 Aug 2006, Henning Sprang wrote:

> On 8/8/06, John Wells <groups@xxxxxxxxxxxxxxxxxxxxx> wrote:
> > Guys,
> >
> > Can anyone point me on documentation that shows how to properly use NAT on
> > 3.0.2? I've got bridging working fine, but trying to switch to NAT has
> > given me problems.
> >
> > I've tried following the documentation here
> > (http://www.howtoforge.com/perfect_setup_xen3_debian_p6) to no avail. I
> > know I'm likely missing a few steps.
> 
> 
> What exactly is not working?

He seems to be at the same spot (or close) to where I was at...

http://lists.xensource.com/archives/html/xen-users/2006-07/msg00368.html

you can see packets leaving the domU, getting NAT'd by the dom0, going out 
to an external box, being echoed back...

And here is where I run into trouble. I remember seeing the return packets 
on peth0 and not eth0 as John describes, but that means I still had a 
bridging config alive... and _that_ seems to trigger the kernel 
issue?/bug? which produces an error message

  "Performing cross-bridge DNAT requires IP forwarding to be enabled"

and the packets not to make it across the bridge to dom0... and of course, 
if dom0 doesn't get them, they do not get NAT'd back for forwarding to 
domU.

I guess the problem is mixing bridging and routed modes. That said, I am 
not sure I ever got it to work correctly, even using both the 
network-script and the vif-script (I should test it... but my current test 
configs are AOE based, and pretty much _must_ be bridged.)

I had spare IP addresses, so I just assigned a real IP and skipped trying 
to do NAT.

-Tom

> 
> Henning
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users
> 
> 

----------------------------------------------------------------------
tbrown@xxxxxxxxxxxxx   | Courage is doing what you're afraid to do.
http://BareMetal.com/  | There can be no courage unless you're scared.
                       | - Eddie Rickenbacker

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-users] NAT on 3.0.2?, John Wells Re: [Xen-users] NAT on 3.0.2?, Henning Sprang Re: [Xen-users] NAT on 3.0.2?, Tom Brown <= Re: [Xen-users] NAT on 3.0.2?, John Wells Re: [Xen-users] NAT on 3.0.2?, John Wells

Previous by Date:	Re: [Xen-users] NAT on 3.0.2?, Henning Sprang
Next by Date:	[Xen-users] tracebacks?, Molle Bestefich
Previous by Thread:	Re: [Xen-users] NAT on 3.0.2?, Henning Sprang
Next by Thread:	Re: [Xen-users] NAT on 3.0.2?, John Wells
Indexes:	[Date] [Thread] [Top] [All Lists]