[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Question about using Xen in a periphery firewall/router scenario

  • To: Simon Hobson <linux@xxxxxxxxxxxxxxxx>
  • From: Sanjay Arora <sanjay.k.arora@xxxxxxxxx>
  • Date: Sun, 23 Aug 2009 00:31:50 +0530
  • Cc: xen-users@xxxxxxxxxxxxxxxxxxx
  • Delivery-date: Sat, 22 Aug 2009 12:02:36 -0700
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=wELbyVXtzevoVaoXfPqcTrUa/fYMR/Reu5SHXQKT8WzJ+8wSKUcAkyCYYl3RTrQg7H WJU3gAnz6r17QaAvfpe9kHg2AGiCJPORwMR9l8jPrp+Pd5Vs1t7nQesvap72blqPs46N 4eT7h2B/BhPSbebq2RU7jFLlpZqH+yAscc6Pk=
  • List-id: Xen user discussion <xen-users.lists.xensource.com>

On Thu, Aug 20, 2009 at 6:13 PM, Simon Hobson<linux@xxxxxxxxxxxxxxxx> wrote:

> The approach I've used at home is to hide a network card from Dom0 (see
> pic-back.hide) and pass it through to a DomU which then sees it as a native
> interface. I then run a firewall in the DomU and the outside traffic does
> NOT go through Dom0.  The route for packets is then :
> real i/f -> DomU (firewall) -> VIF -> int bridge [ Dom0 | VIF -> DomU ]

Can you advise hoe to set this up?


Xen-users mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.