WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-users] firewall domU

from [Grant McWilliams] [Permanent Link][Original]
To: "Maximilian W. Zeller" <mawize@xxxxxxxxx>
Subject: Re: [Xen-users] firewall domU
From: "Grant McWilliams" <grantmasterflash@xxxxxxxxx>
Date: Thu, 18 Dec 2008 11:48:06 -0800
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 18 Dec 2008 11:52:51 -0800
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type:references; bh=kw9vkkq32QA84eAjMwXkY5g6rONMvz3+F1NC7cXfzIc=; b=cy8gx6qCrDSwXr03CI/fD1bZQnTpMaZ81/u790bzYY6jvVxrXt+eu4sIP0McydCryA egUKiFYHump67Vhhldxv5iI4xDAk4lgingRIvf6TaVzq0tC0gjy3twjfYjKTDrGu8Aax T1l6gIkTrd9LDp+oPVTqKouDWTJzmAlZLHU28=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:references; b=uPrkFRrve0pOOOt8TkHUICdG9umg0EbXYIEALsOQK3Clr7/naLWSL7nwY4mcbx6hmT IMvU33eK0kvGW3iGcOzBFaiRQzqdHLotoJ5Zf8KgY5TR5tgth3NcTq53fy6yiZ8bSLfI evdcs72y/30XUubhbqSgpHv8JX8nwhRNiDVgs=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <b2f21c20812180823y24581613w8cc58b41ae18d81b@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <b2f21c20812180823y24581613w8cc58b41ae18d81b@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx

On Thu, Dec 18, 2008 at 8:23 AM, Maximilian W. Zeller <mawize@xxxxxxxxx> wrote:
We would like to implement following scenario .. please look at the png attachment

Main Question:
how do i set up a domU firewall/router with one interface bridged to the internet and interfaces connected to other domUs? do we even need an interface for each connected domU?

thanks in advance
merry xmas

Max
 
Max,
   Why would you want two firewalls protecting your internal network? Anyway it seems you'd want to do this if you keep both firewalls. Have both DomU firewalls connect to the standard eth0 bridge just as you have it now. Each DomU firewall will have a second vif. Create two more bridges - br0 and br1 (name them has you like) and specify the appropriate bridge in the www DomUs and email DomUs config files. You'll also need to specify that the second interfaces on the DomU firewalls reside on the appropriate bridges.


Grant McWilliams

Some people, when confronted with a problem, think "I know, I'll use Windows."
Now they have two problems.

Attachment: idea2.png
Description: PNG image

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] How to create a simple network between host an domU, Grant McWilliams
Next by Date:  [Xen-users] existing linux install and xen, Brian Krusic
Previous by Thread:  Fwd: [Xen-users] firewall domU, Thiago Camargo Martins Cordeiro
Next by Thread:  [Xen-users] Drive size discrepancy on Windows 2000 Server DomU, Edward OBrien
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy