[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] XEN Network Configuration Problem

Hi Michael and Dirk

This is determined by the order of the interfaces in the config file:

eg: my /etc/xen/Firewall includes
pci = ['00,0b,0', '00,0a,0' ]
nics=11
vif = [ 'mac=aa:00:00:00:22:01, bridge=br10', \
        'mac=aa:00:00:25:40:01, bridge=xen-br0', \
        'mac=aa:00:00:25:40:09, bridge=br1', \
        'mac=aa:00:00:25:40:17, bridge=br2', \
        'mac=aa:00:00:25:40:25, bridge=br3', \
        'mac=aa:00:00:25:40:33, bridge=br4', \
        'mac=aa:00:00:25:40:49, bridge=br5', \
        'mac=aa:00:00:25:40:45, bridge=br6', \
        'mac=aa:00:00:25:40:73, bridge=br7', \
        'mac=aa:00:00:25:40:81, bridge=br8', \
        'mac=aa:00:00:25:40:97, bridge=br9' ]

This makes the xen-br0 that you're referring to appear as eth3 in Firewall.

I _assume_ that putting the pci entry after the vif statement would result
in xen-br0 becoming eth1. (untested)

>From memory you can change the order in IPCop itself by editing
/var/ipcop/ethernet/settings
but as I don't have a running version atm I can't confirm that either ;)

Marcus.


Michael WALSER wrote:
>>Hi Michael,
>>
>>there was a long thread "Ideal(istic) xen firewall design" on this list
>>which discussed many aspects of these designs.
>>
>>Have a look at the archives.
>>
>>Dirk
>>
> 
> Thanks, I read the Thread. But my problem is not so complicated, I Think.
> I did it like Markus:
> --> 2 Network-Interfaces (all 2 hidden from dom0 and configured in domU
> (PCI-Entry in the Config File (etc/xen/ipcop))
> --> 1 (Default Configured) Ethernet-Bride on XEN (2.0.7 Stable) (eth0)
> should be the DMZ-Connection (eth1 in the domU).
> 
> How can I modify the Interface Numbers. Everything works fine, but the IPCOP
> scripts are written as so that eth0 is always the LAN-Interface, but the
> Bridge to the DOM0 should have eth1 instead of eth0, because dom0 should be
> my DMZ-Host.
> 
> That means that I do not change the Bridge-Configuration or anything like
> that. I only want to change the name of the interfaces EHT0 <--> ETH1.
> But I cannot Modify ETH0 cause it is fixed in domU.
> 
> What do I have to change to give the "Bridge" the name eth1 and one of the
> configured NICs eth0.
> 
> Michael
> 
> 
> 
> 
>>Michael WALSER schrieb:
>>
>>
>>>Hi,
>>>
>>>I'm running RedHat Enterprise Linux 4 (RHEL4) on my Server and I use XEN
>>
>>for
>>
>>>virtualizes my Firewall (based on IP-COP) on the same machine.
>>>The problem now is hat XEN associates always eth0 of domU with my NIC
>>
>>(eth0)
>>
>>>on dom0.
>>>When I want to use my dom0 as DMZ host, I have to associate eth0 in my
>>
>>dom0
>>
>>>with eth1 in my domU as shown below. The eth0 in my domU should be a
>>>physical interface in my system.
>>>
>>>Dom0                         domU
>>>Eth0         <--->           eth1
>>>                             eth0            <--->   Physical Interface
>>>(00:13.0)
>>>
>>>
>>>How can I configure XEN's network in this way?
>>>
>>>Thanks,
>>>Mike

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.