This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-users] Virtual Machine Interfaces

To: "Fajar A. Nugraha" <list@xxxxxxxxx>
Subject: Re: [Xen-users] Virtual Machine Interfaces
From: Russell Seymour <russell.seymour@xxxxxxxxxxxxxxxxxxx>
Date: Wed, 29 Dec 2010 21:31:27 +0000
Cc: xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Wed, 29 Dec 2010 13:34:18 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <AANLkTim0ZQ=zFYS3f0fTeBxtTa+60pEqhyGED_=7g=Od@xxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <4D1B3D5D.6010509@xxxxxxxxxxxxxxxxx> <AANLkTim0ZQ=zFYS3f0fTeBxtTa+60pEqhyGED_=7g=Od@xxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv: Gecko/20101027 Lightning/1.0b2 Thunderbird/3.1.6

Thanks very much for this.

I am looking at changing the way the networking works as you have suggested.  I used iptables currently for my home router so am familiar with this sort of setup.

I have created my virbr0 using libvirt, but how do I know tell Xen to use this interface?  I have modified the .sxp file to use bridge networking, but it creates its own thing.  I have tried to set it to netdev=virbr0 but that did not seem to have any effect.  IN other words how can I get Xen to use this custom bridge?

Thanks again,


On 29/12/2010 14:31, Fajar A. Nugraha wrote:
On Wed, Dec 29, 2010 at 8:53 PM, Russell Seymour
<russell.seymour@xxxxxxxxxxxxxxxxxxx> wrote:
Good afternoon,

I have a host on which I am running Xen.  I have succesfully created a new
guest machine and I can connect to it using routed networking.  I am not
able to used bridged due to restrictions with my hosting company.
You can use bridge networking with a custom bridge not connected to
any dom0's eth, and making dom0 a router/firewall for domUs. If you're
familiar with managing router/firewall, this setup is actualy easier
to manage.

One example of such setup is virbr0 created by libvirt (bridge + nat).

This server has a connection to my VPN on interface tap0.  I would like to
add another interface to each of my virtual machines on this VPN network
which means that I need to be able to route over the tap0 interface (I
think).  However I have not been able to accomplish this and searching
around the internet has not provided me with a complete answer.  If anyone
has any pointers on this please can you forward them on?

You can try :
- create a bridge manually on dom0 (call it brtap0 or whatever)
- put tap0 on that bridge (you can use openvpn's --up argument to do
this automatically, see openvpn's manual)
- add another interface on domU's config, but specifically use
"script=vif-bridge" on that vif's definition, and put it on the same

That way you should be able to use both route and bridge networking.

Xen-users mailing list
<Prev in Thread] Current Thread [Next in Thread>