WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-users] Bridge Hopping

from [Jonathan Tripathy] [Permanent Link][Original]
To: "Jeff Sturm" <jeff.sturm@xxxxxxxxxx>, <Xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] Bridge Hopping
From: "Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>
Date: Thu, 15 Jul 2010 08:49:59 +0100
Cc:
Delivery-date: Thu, 15 Jul 2010 00:52:41 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4C3E2A8A.9040408@xxxxxxxxxxx> <64D0546C5EBBD147B75DE133D798665F06A11C24@xxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: Acsjm4TeWtXtBetlRPyF5S2n59roCAAFgnBgABAxIi4=
Thread-topic: [Xen-users] Bridge Hopping

 

From: Jeff Sturm [mailto:jeff.sturm@xxxxxxxxxx]
Sent: Thu 15/07/2010 01:10
To: Jonathan Tripathy; Xen-users@xxxxxxxxxxxxxxxxxxx
Subject: RE: [Xen-users] Bridge Hopping

> -----Original Message-----
> From: xen-users-bounces@xxxxxxxxxxxxxxxxxxx [mailto:xen-users-
> bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of Jonathan Tripathy
> Sent: Wednesday, July 14, 2010 5:22 PM
> To: Xen-users@xxxxxxxxxxxxxxxxxxx
> Subject: [Xen-users] Bridge Hopping
>
> Hi Everyone,
>
> My Xen host has 3 bridge. 1 bridge has an ip, the other 2 do not. Am I
> correct in saying that since the 2 bridges don't have an IP address,
> DomUs which are connected to that bridge cannot "hop" from one bridge
to
> the other? It is important that traffic leaving the bridge (not
destined
> for another DomU on the same bridge) goes through the firewall DomU.

If any bridge device is connected to a physical interface (e.g. eth0),
packets could also traverse out that interface into another bridge or
switch on your network.

It's helpful for me to think of Linux bridge devices as virtual
switches, and diagram them exactly the same way.  Each interface
(virtual or physical) plumbed into the bridge device functions like a
switch port.

-Jeff

---------------------------------------------------------------------------------------------------------------

Thanks for your reply.

I understand what you are saying, however my bridges have no virtual and physical NICs which connect them to each other. My question was whether the Dom0 could "forward" packets from one bridge to the other (This is what I wish to prevent). The 2 bridges that don't have an ip address assigned have untrusted clients connected to them

Thanks 


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-users] xm console no responsing, Yunfeng Xu
Next by Date:  Re: [Xen-users] Bridge Hopping, Fajar A. Nugraha
Previous by Thread:  RE: [Xen-users] Bridge Hopping, Jeff Sturm
Next by Thread:  Re: [Xen-users] Bridge Hopping, Fajar A. Nugraha
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy