[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v3 4/4] docs: Document xenstore paths for domain network address information

Paul Durrant writes ("RE: [PATCH v3 4/4] docs: Document xenstore paths for 
domain network address information"):
> [Ian:]
> > The primary (virtual hardware) VIF MAC address is already recorded by
> > the toolstack in the PV protocol backend directory.
> > 
> > What is this for ?
> The frontend is free to ignore it


> and Windows has such override mechanisms. I view the address in the
> backend area as the virtual NIC's burnt-in address.


> This area is for the displaying all MAC addresses for which the
> frontend is processing traffic i.e. current unicast and all
> multicast addresses in operation. (No point in making broadcast
> address explicit).


> > At the very least you need to state that this information MUST NOT be
> > used for packet routing, packet filtering, or for security purposes.
> It is for information only. I'll call that out.


> Mostly for display purposes, but a UI could use it for kicking off a
> VNC or SSH session... I'll add that to the doc.

Right.  I think these are safe uses, since the guest controls this
value but if you are trying to ssh to the guest you want what the
guest thinks is its own IP address.


Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.