[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Live Migration Config

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Mark Williamson <mark.williamson@xxxxxxxxxxxx>
Date: Sat, 29 Oct 2005 13:38:14 +0100
Cc: Staf Verhaegen <staf.verhaegen@xxxxxxxxx>
Delivery-date: Sat, 29 Oct 2005 12:37:00 +0000
List-id: Xen user discussion <xen-users.lists.xensource.com>

> > Right now (and particularly with Xen 2.0, since it exports the management
> > interface over HTTP), the rule is basically not to have anything you
> > don't trust be able to access dom0 over the network.
>
> If this migration happens via http, you can probably firewall the port
> on your dom0 to only accept connections from certain ip adresses ?
> Or am I missing something ?

Yes, firewalling is also fine; of course you still have to trust that no 
machines on the same network are capable of IP address spoofing (or trust 
them not too).

Cheers,
Mark

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

References:
- Re: [Xen-users] Live Migration Config
  - From: Staf Verhaegen

Prev by Date: [Xen-users] Re: SSL TOE
Next by Date: AW: [Xen-users] XEN Network Configuration Problem
Previous by thread: Re: [Xen-users] Live Migration Config
Next by thread: [Xen-users] creating a domU with a particular UUID with xen-unstable
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.