|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-devel] static ip for hvm's
On Mon, Nov 13, 2006 at 12:14:09PM -0700, Liang Yang wrote: > What is the advantage of using xen router over xen bridge? Routing is a lot simpler, compare the lengths of the setup scripts... 311 network-bridge 67 vif-bridge vs 19 network-route 56 vif-route When routing the linux kernel of dom0 makes the routing decisions using the routing table we all know and love. If you set route filtering echo 1 > /proc/sys/net/ipv4/conf/INTERFACE/rp_filter then it is easy to make sure that the domUs can't steal any IP addresses which don't belong to them, nor spoof any IP traffic. No iptables magic required. Also every time I take a bridge down it seems to crash the computer! I guess I'm just allergic to bridging/switching in general having had to debug some horrible networking problems in the past all caused by misconfigured or faulty switches ;-) YMMV of course! > Then how about using Xen NAT over Xen router and bridge? Could you > shed some lights here? I haven't tried Xen NAT. If I was going to do it then I'd do it using iptables/shorewall in domU. -- Nick Craig-Wood <nick@xxxxxxxxxxxxxx> -- http://www.craig-wood.com/nick _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-devel
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |