WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

[Xen-users] Lost source IP in DomU

To: <xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: [Xen-users] Lost source IP in DomU
From: Maresa Nirwan <parampat@xxxxxxxxxxx>
Date: Wed, 12 Nov 2008 15:30:20 +0000
Delivery-date: Wed, 12 Nov 2008 07:31:06 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
Importance: Normal
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Hello,

I got Ubuntu 8.04 64-bit running with Xen as Dom0. I got it running fine and I got about 5 DomUs running. Everything is working fine, I can boot fine, networking runs smoothly (incoming and outgoing traffic works fine) and it's pretty stable too, I think.

I only have 1 problem with it: I lost source IP address of anyone connecting to my DomU.

Here's what I got:
- Linux XXXX.XXXX.XXXX 2.6.24-19-xen #1 SMP Wed Aug 20 21:08:51 UTC 2008 x86_64 GNU/Linux
- A physical network card connected to network on Dom0 at eth0 with live IP 1.1.1.1
- A Dummy0 virtual NIC for running local IP 10.1.1.1

Now my problem is, say on DomU, I assigned live IP address 1.1.1.2 then I tried to SSH from my home at IP address 2.2.2.2, when I connect, on DomU it shows that there's SSH connection from Dom0 IP address (1.1.1.1) instead of from my home IP (2.2.2.2).

The same thing for my DomU that serves HTTP. All the log files shows connection from my Dom0 IP (1.1.1.1). Worse is my Postfix mail. I've set 1.1.1.1/24 as within network and since SMTP connection to any DomU is seen as originated from Dom0 IP address (1.1.1.1), it basically renders my Postfix to be open relay. (before you jump on me about it ... I've set Postfix to not be set as open relay, however since any connection is seen as Dom0 IP address, it appears to Postfix that it originated from trusted local network. My workaround is to not set any trusted networks for now. But that's only like a hack and not the best solution.)

So going back to my original problem ... Can anyone help me configuring things out so that DomU will see the original IP address instead of Dom0 IP address?

If you're wondering why I have Dummy0, it is for my DomU database server. I don't want to give it a public IP. So each DomU (other than database server) will have 2 virtual network card: 1 that has live IP and another one that has local IP 10.1.1.1/24.

Hopefully someone can answer me. I've tried searching Google, etc but I just could not find any answers ...

Thanks,
MSN
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
<Prev in Thread] Current Thread [Next in Thread>