This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-users] Domain with openvpn-server-bridge to Dom0-bridge problem

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: Re: [Xen-users] Domain with openvpn-server-bridge to Dom0-bridge problem
From: Tegger <xen@xxxxxxxxx>
Date: Wed, 23 Jun 2010 16:48:15 +0200
Cc: Felix Kuperjans <felix@xxxxxxxxxxxxxxxxxx>
Delivery-date: Wed, 23 Jun 2010 07:49:59 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <4C1F6A0C.3020405@xxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4C1DF1AE.6060002@xxxxxxxxx> <AANLkTimc517jG6znJ66U5r2o40Pu9JEP5mkKOV-x_kYj@xxxxxxxxxxxxxx> <4C1F639E.5000203@xxxxxxxxx> <4C1F6A0C.3020405@xxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; de; rv: Gecko/20100512 Thunderbird/3.0.5
eth0, the real card, is online for connection to internet
so i need only a bridge between tap0 and eth1, the XEN Card.

so 192.168.100.x are used for real network and internal XEN network, but not for the connection to vpn.
So the virtual tap0 has
the eth1, XEN Card has
and Dom0 has

a Windows Domain has

and the rest is the real network....... i didn't understand how i must change the routings....

Openvpn Dom

xen205:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface * U 0 0 0 br0 * U 0 0 0 eth0
default         fritz.box         UG    0      0        0 eth0


DOM0:~# route
Ziel Router Genmask Flags Metric Ref Use Iface * U 0 0 0 eth0 default 20710 UG 0 0 0 eth0

Am 21.06.2010 15:33, schrieb Felix Kuperjans:
If I'm reading your information correctly, the bridge (br0) of your
Openvpn domain only connects to eth1 (XEN-Dom0) and to tap0 (Openvpn's
virtual interface), but not to eth0 (pass-through real nic). If that was
true, your problem lies there.

Another point could be, that your routes are messed up. You seem to be
using 192.168.100.x as the real external network *and* the internal XEN
network. But by assigning two ip addresses to eth0 and eth1 in Openvpn
domain, you get two routes for, leaving the choice to
the operating system. There should be only one address assigned to the
bridge, I think.

I hope one of those points helps you.

Felix Kuperjans

Xen-users mailing list