WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-users] DomU Bridged vs. Routed Networking?

from [Ian Pratt] [Permanent Link][Original]
To: "Nivedita Singhvi" <nsnix@xxxxxxxxxxx>, "Andy Lee" <andylee@xxxxxxxx>
Subject: RE: [Xen-users] DomU Bridged vs. Routed Networking?
From: "Ian Pratt" <m+Ian.Pratt@xxxxxxxxxxxx>
Date: Wed, 17 Aug 2005 09:30:43 +0100
Cc: ian.pratt@xxxxxxxxxxxx, xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 17 Aug 2005 08:29:16 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcWi+Jfgdw9DOXHMSBufnKaYO8dTPgADHwPQ
Thread-topic: [Xen-users] DomU Bridged vs. Routed Networking? 
 

> > Seems like most users opt for the bridged approach.  Perhaps it's 
> > because it is easier to setup and it is the default setting.  For 
> > route, I spent several days to learn that 
> > /proc/sys/net/ipv4/conf/eth0/proxy_arp needs to be set to 0.  It is 
> > not (Debian Sarge).  It should probably be added to 
> > /etc/xen/scripts/network-route.
> > 
> > I also modified scripts/vif-route (using iptables) to forward only 
> > packets belonging to each domU's IP address, thereby 
> preventing domU's 
> > from using IP addresses not assigned to them.  

Please can you post diffs and we'll update the example scripts.

> > With bridge, I'd need 
> > to install etables - one extra program to install and learn.

That's not actually true -- you can use iptables to do packet filtering
in bridge mode. You only need ebtables if you want to do matches on MAC
addrs. 

> There is one other factor which some people have noticed and 
> pointed out on this list: the interface is in promiscuous 
> mode in the bridging scenario, which deteriorates performance.
> Your mileage may vary.

All modern Ethernet networks are switched rather than shared media.
Putting the interface in promiscous mode will make NO difference to
performance unless you have lots of *multicast* traffic on your network
that this host isn't interested in.

Ian

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-users] Serial Console oddity, Tom Brown
Next by Date:  Re: [Xen-users] help boot ing xen, Jacek Aviles
Previous by Thread:  Re: [Xen-users] DomU Bridged vs. Routed Networking?, Alexander Bochmann
Next by Thread:  Re: [Xen-users] DomU Bridged vs. Routed Networking?, Nivedita Singhvi
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy