WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

Re: [Xen-users] networking problem, 2 nics , DMZ, internal net

To: Xen-users@xxxxxxxxxxxxxxxxxxx, john@xxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] networking problem, 2 nics , DMZ, internal net
From: Barry Sullivan <barryns2@xxxxxxxxxxxx>
Date: Fri, 10 Feb 2006 13:44:08 -0500
Delivery-date: Fri, 10 Feb 2006 18:56:29 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <43EC6242.2090003@xxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization: Barry's PC Solutions
References: <5199087.1139540537636.JavaMail.root@web27> <43EC6242.2090003@xxxxxxxxxxxxxxxx>
Reply-to: barryns2@xxxxxxxxxxxx
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
On Fri, 2006-02-10 at 02:52 -0700, John R. Shannon wrote:
> barryns2@xxxxxxxxxxxx wrote:
> > here is the problem.
> > 
> > I am running a dom0 with two nics
> > 
> > eth0 wants to be my external if and I want to have 1 or more domU's on this 
> > network as a DMZ
> > 
> > eth1 wants to connect to a switch for my internal network, but I want one 
> > domU in this network to run as a samba PDC
> > 
> > how can I set this up?  do I use bridging, routing, or routed nat, or some 
> > combination.
> > 
> > Thanks,
> > Barry S
> > 
> > 
> > 
> > _______________________________________________
> > Xen-users mailing list
> > Xen-users@xxxxxxxxxxxxxxxxxxx
> > http://lists.xensource.com/xen-users
> 
> 
> This is the same setup I have.
> 
> Set up two bridges, one bridge includes eth0 the other eth1. Each domU 
> will have a virtual interface included in each bridge. For example:
> 
> 
> domain0$ xm vif-list www
> (vif (idx 0) (vif 0) (mac aa:00:00:00:00:02) (vifname vif2.0) (bridge 
> bridge0) (evtchn 22 4) (index 0))
> (vif (idx 1) (vif 1) (mac aa:00:00:00:01:02) (vifname vif2.1) (bridge 
> bridge1) (evtchn 23 5) (index 1))
> 
> Do not enable packet forwarding.
> 

with this setup are both interfaces on the same network?

I would like the dmz to be on a different network than the local net.


this is my vision, does it make sense?


                          internet
                             |
                           router
                             |
           mail(domU.0)-----if1-----www(domU.0)
                          computer
                            if2-----smb-pdc(domU.1)
                             |
                           switch
                 ____________|___________
                 |           |          |
               Hst1        Hst2        Hst3


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

<Prev in Thread] Current Thread [Next in Thread>