WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/

Home

xen-users

[Top] [All Lists]

Re: [Xen-users] Force traffic out one interface

from [Jonathan Tripathy]

[Permanent Link][Original]

To:	0bo0 <0.bugs.only.0@xxxxxxxxx>, xen-users@xxxxxxxxxxxxxxxxxxx
Subject:	Re: [Xen-users] Force traffic out one interface
From:	Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Date:	Sun, 13 Jun 2010 16:55:37 +0100
Cc:
Delivery-date:	Sun, 13 Jun 2010 09:01:17 -0700
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<AANLkTikEAAWK2zXR8m9qEPOaxHvz4A7I_yDVFP2M6i-s@xxxxxxxxxxxxxx>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References:	<4C14FD27.2080100@xxxxxxxxxxx> <AANLkTikEAAWK2zXR8m9qEPOaxHvz4A7I_yDVFP2M6i-s@xxxxxxxxxxxxxx>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent:	Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.9) Gecko/20100423 Thunderbird/3.0.4


On 13/06/10 16:52, 0bo0 wrote:

hi,

On Sun, Jun 13, 2010 at 8:45 AM, Jonathan Tripathy<jonnyt@xxxxxxxxxxx>  wrote:

Does anyone know any rules that I could use (using iptable, ebtables, or
otherwise) that could force all traffic coming from a guest to go out via a
particular interface? I wish to stop "inter-guest" communication, without
going via my firewall first.

tho not sure it addresses your specific issue, you may find this of
general interest when deploying a fw in a Xen VM:

   http://www.shorewall.net/XenMyWay.html

hth


Thanks for that.

I've already read that before, but that post talks about ip filteringusing iptables+shorewall. I wish to stop frames at the ethernet layer byforcing all traffic out via a paticular interface.


Thanks

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-users] Force traffic out one interface, Jonathan Tripathy Message not available Re: [Xen-users] Force traffic out one interface, Jonathan Tripathy <= Re: [Xen-users] Force traffic out one interface, Fajar A. Nugraha Re: [Xen-users] Force traffic out one interface, Jonathan Tripathy Re: [Xen-users] Force traffic out one interface, Fajar A. Nugraha Re: [Xen-users] Force traffic out one interface, Jonathan Tripathy Re: [Xen-users] Force traffic out one interface, Felix Kuperjans Re: [Xen-users] Force traffic out one interface, Jonathan Tripathy Re: [Xen-users] Force traffic out one interface, Felix Kuperjans

Previous by Date:	Re: [Xen-users] Xen 4 installation, 0bo0
Next by Date:	Re: [Xen-users] Bridge rules, Fajar A. Nugraha
Previous by Thread:	[Xen-users] Force traffic out one interface, Jonathan Tripathy
Next by Thread:	Re: [Xen-users] Force traffic out one interface, Fajar A. Nugraha
Indexes:	[Date] [Thread] [Top] [All Lists]

This site is hosted by Citrix