xen-users

[Top] [All Lists]

Re: [Xen-users] Connecting dom0's with VPN?

from [Nemeth, Tamas]

[Permanent Link][Original]

To:	xen-users@xxxxxxxxxxxxxxxxxxx
Subject:	Re: [Xen-users] Connecting dom0's with VPN?
From:	"Nemeth, Tamas" <nice@xxxxxxxxxxxxxxx>
Date:	Fri, 19 Sep 2008 06:07:24 +0200
Cc:	Steve Wray <steve.wray@xxxxxxxxx>
Delivery-date:	Thu, 18 Sep 2008 21:08:03 -0700
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<48D2F27E.1020801@xxxxxxxxx>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Organization:	Nyugat-Magyarországi Egyetem
References:	<48D2F27E.1020801@xxxxxxxxx>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx

If the connection between the two ending points (in the two facilities)
is ralized exlcusively by IEEE 802.1q VLAN capable switches all along
the path, then the obvious solution is to create a dedicated VLAN for
this purpose.

However, read this:
http://openvpn.net/index.php/documentation/miscellaneous/ethernet-bridging.html
This seems to be the stuff, needed for xen, but doesn't provide as
strong separation as the VLAN.

Bye,

Tamas

2008. 09. 19, péntek keltezéssel 12.29-kor Steve Wray ezt írta:
> Hi there,
> 
> I have two dom0 hosts with two network interfaces.
> 
> One of those interfaces is configured with an IP address and is the 
> 'service entrance' for maintenance of the host.
> 
> The other interface is allocated to the Xen bridge and does not have IP 
> addresses assigned to it.
> 
> The two dom0 hosts are connected on this interface with a crossover 
> cable. This forms a network for the domU virtual machines on each dom0 
> and some of these domU machines replicate disk via this crossover cable 
> with drbd and also do heartbeat monitoring.
> 
> So far this is all working perfectly.
> 
> I would like very much to be able to seperate the two physical hosts and 
> to temporarily place them into different facilities.
> 
> A really really long crossover cable is out of the question.
> 
> What I am thinking of is creating a VPN between the two machines however 
> I'm not sure how to do this.
> 
> I am thinking that if I create a VPN tunnel between the two sites and 
> then connect the bridged interface to the VPN this won't work. Or will 
> it? Remember that the bridged interface itself doesn't have an IP 
> address. And I'm not sure how OpenVPN would react to passing packets 
> from the Xen bridges.
> 
> 
> Can anyone please offer any suggestions as to how to create a tunnel 
> between these two hosts (to simulate the crossover cable)?
> 
> Thanks!
> 
> 
> 
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-users] Connecting dom0's with VPN?, Steve Wray Re: [Xen-users] Connecting dom0's with VPN?, Nemeth, Tamas <= Re: [Xen-users] Connecting dom0's with VPN?, Javier Guerra Giraldez RES: [Xen-users] Connecting dom0's with VPN?, Bruno Bertechini

Previous by Date:	Re: [Xen-users] how do I increase a LVM based xen domU?, Fajar A. Nugraha
Next by Date:	Re: [Xen-users] Connecting dom0's with VPN?, Javier Guerra Giraldez
Previous by Thread:	[Xen-users] Connecting dom0's with VPN?, Steve Wray
Next by Thread:	Re: [Xen-users] Connecting dom0's with VPN?, Javier Guerra Giraldez
Indexes:	[Date] [Thread] [Top] [All Lists]