WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] can any one help with NAT using xen 3.4.1

To: Xen List <xen-users@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Xen-users] can any one help with NAT using xen 3.4.1
From: Tapas Mishra <mightydreams@xxxxxxxxx>
Date: Thu, 22 Apr 2010 06:35:44 +0530
Delivery-date: Wed, 21 Apr 2010 18:07:00 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:received:message-id:subject:from:to:content-type :content-transfer-encoding; bh=JpbdGDXWi/xV7b5wMeUVlaB3kabhWeydGHQJgfP+b8A=; b=wpQu6wlIqxJ8bwz2Yn0lZtSsRy59r1yg2s//ubpFehIBcC6heBRHzu12KLg5bljM4R 0NEd4sjlExKY4F5lH8DeFkON1Plqbz6HxL/h/zwIBKh4tIA2MQvlXfgFqvoHoo+bkKfD KDe4drIQhpEvmPbdBbI5MxpXyN1jpuJOFwiAQ=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=qmcfzM7mgtBiH7Ikd9Y06pv9UIR0HU8dCqtXl42banihDpfhppsLjXI47ZdIY24mw4 Hlku6/x1QIU1hzx91jvcHqx30wY6mE8xduYFEvrEayVUS43IPNmZrDMhD720SodW/TJP E69eoo1SwuyNJs2U9Vk4ILDU0uji0fytlDabo=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <24BECEA0-863C-4438-97BF-F8F7C44DC6F1@xxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <30C07B87-1DAA-4803-BEC0-895864C99DE6@xxxxxxxxxx> <w2ke2d2e5831004201128p725b18aj36e46afbe9b2cd5b@xxxxxxxxxxxxxx> <65EEC6EA-AF35-41A2-8FB0-2A135C91471C@xxxxxxxxxx> <r2qe2d2e5831004201155od6894406ub890c2b0608fab6@xxxxxxxxxxxxxx> <C182E72E-9AB5-4778-97FC-12E9E71C5E7A@xxxxxxxxxx> <n2je2d2e5831004202033k294418ffh7c568b6bf78b1739@xxxxxxxxxxxxxx> <24BECEA0-863C-4438-97BF-F8F7C44DC6F1@xxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
What I was suggested by some people on list is to make a dummy network
interface and use that in place of netdev='eth1'
i.e. netdev='dummy'
http://www.debian-administration.org/articles/470
then use routing etc.

On Wed, Apr 21, 2010 at 11:18 PM, Brian Krusic <brian@xxxxxxxxxx> wrote:
> Hi Tapas,
>
> The domU is on a diff subnet then dom0.
>
> And I need to keep that domU in its own subnet but not isolated.
>
> I would rather only use 1 LAN card on the domU.
>
> I'm unsure why I can't understand how to do this in Xen, I do it all day
> long with routers, VMware, etc...
>
> Basically the domU should appear as 10.10.10.200 to the dom0 subnet while
> the domU itself remains at 10.0.10.200.
>
>
> - Brian
>
> On Apr 20, 2010, at 8:33 PM, Tapas Mishra wrote:
>
>>>
>>> How will packets then know to go from 10.10.10.200 which is what the
>>> world
>>> thinks my domU is  to 10.0.10.200 which is my internal domU IP as
>>> config'd
>>> via its network scripts?
>>
>> I am a bit confused on your question is DomU on a different subnet
>> than the LAN .
>> 10.10.10.200 and 10.0.100.200 are both DomU how can you have 2 IPs on
>> different subnet to your DomU are you using 2 LAN cards.If that is the
>> case then you need to setup IPTABLES on Dom0.Even if you choose to
>> isolate that then also IPTABLES you need to setup.
>> Your Dom0 has to be configured to forward the packets coming to
>> 10.10.10.200 to 10.0.100.200 then that means your Dom0 should also be
>> in 10.10.10.x range .
>> If it is a bridge setup you don't need to do all that simple
>> forwarding will do  just check it once by enabling IP FORWARDING if it
>> does not work then go ahead with IPTABLES.
>>
>> I am myself not clear on this  part but it seems that Xend daemon
>> takes care of this part at least if both xen dom0 and xen domU are in
>> same subnet otherwise if you check my messages on this list you need
>> to have a dummy bridge and then configure routing from that.
>>
>> But I have seen if you ping from DomU to your network or want to do an
>> SSH and on the other machine you see you will get IP of DomU only.
>> You can use a 3rd machine on your network and login to it via DomU and
>> then type command w to confirm that it is able to know your IP.
>> It is as good as saying that your added a physical machine to your
>> network/
>>
>> For your DomU the Dom0 will be the gateway that you will have to
>> configure.
>> and DNS will be same as for rest of machines on network,DomU needs to
>> have just the gateway as Dom0 then xend daemon will take care of rest
>> of the things.
>>
>>> Or should I also set the ip in config.sxp as you have written in section
>>> E?
>>
>> I have not said to configure IP on config.sxp
>> you need to check vif-bridge and network-bridge words in the two lines
>> there and uncomment if it is a bridged setup.
>> and rest should be commented.
>>
>>
>> --
>> Tapas
>>
>> +91 8971248477
>
>



-- 
Tapas
http://wiki.xensource.com/xenwiki/Xen_on_4_app_servers
+91 8971248477

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

<Prev in Thread] Current Thread [Next in Thread>