WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

[Xen-users] dom0 networking

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] dom0 networking
From: Paolo Supino <paolo@xxxxxxxxxxxxx>
Date: Fri, 07 Jul 2006 00:02:53 -0400
Delivery-date: Thu, 06 Jul 2006 21:04:33 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.12) Gecko/20050915
Hi

I have a bit of a problem that I have to overcome. I have 2 networks that I need to run different system on (DMZ and internal). I have one computer that has two NICs and I thought of doing the following: Setup Xen and run dom0 without giving it an IP address. Setup one domU that is bridged through the first NIC and a second domU that is bridge through a second bridge on the second interface. The result of this setup is that I have 2 domUs that are totally separated even on the network level and dom0 that is unreachable because it doesn't exist in layer 3 and above.
The questions I have:
1. Is it possible not to give dom0 an IP address at all and still have the domU be able to network?
2. Is such a setup has a security weakness that I'm not seeing?




TIA
Paolo


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

<Prev in Thread] Current Thread [Next in Thread>