WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] Squid in bridging mode

from [Stephan Seitz] [Permanent Link][Original]
To: David <big.raiders.fan@xxxxxxxxx>
Subject: Re: [Xen-users] Squid in bridging mode
From: Stephan Seitz <s.seitz@xxxxxxxxxxxx>
Date: Wed, 23 May 2007 17:10:34 +0200
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 23 May 2007 08:09:46 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <60cf56040705230730g4e4820f5o785e2f2e49b045f0@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization: netz-haut e.K.
References: <60cf56040705230730g4e4820f5o785e2f2e49b045f0@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.0 (X11/20070326) 
Hi,

i think it's a better practise to leave dom0 for administrative tasks and
setup squid in a domU.
By using the default xen-network-bridge, you're able to setup iptables
in the domU without using any bridge-specific stuff.



David schrieb:
> Still learning Xen, and would like to know if it's possible to run Squid
> in D0 when running in bridging mode.  I have iptables and ebtables
> going, and am able to log packets with those, but can't seem to get any
> traffic out of the bridge into Squid in D0 (or through iptables in D0,
> for that matter).
> 
> Information I've gathered so far is that I need
> net.bridge.bridge-nf-call-iptables = 1, and need the following command
> to have packets accepted by the bridge:
> ebtables -t broute -A BROUTING -p ipv4 --ip-proto 6 --ip-dport 80 -j
> redirect --redirect-target ACCEPT
> 
> Not sure what I need from here.  Are there other bridge or iptables
> settings I need to check?  Is there some special iptables command I'm
> missing to have the network traffic go through D0 when bridging?
> 
> Thanks,
> David
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users


-- 
Stephan Seitz
Senior System Administrator

*netz-haut* e.K.
multimediale kommunikation

zweierweg 22
97074 würzburg

fon: +49 931 2876247
fax: +49 931 2876248

web: www.netz-haut.de <http://www.netz-haut.de/>

registriergericht: amtsgericht würzburg, hra 5054

Attachment: s.seitz.vcf
Description: Vcard

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] Slow network performance between HVM guests, Martin Goldstone
Next by Date:  RE: [Xen-users] Slow network performance between HVM guests, Petersson, Mats
Previous by Thread:  [Xen-users] Squid in bridging mode, David
Next by Thread:  [Xen-users] Slow network performance between HVM guests, Martin Goldstone
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy