[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Domain0 and firewalls

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Tom Eastep <teastep@xxxxxxxxxxxxx>
Date: Wed, 22 Feb 2006 16:33:50 -0800
Delivery-date: Thu, 23 Feb 2006 00:34:31 +0000
List-id: Xen user discussion <xen-users.lists.xensource.com>

On Wednesday 22 February 2006 13:49, David Koski wrote:

>
> Thanks Tom.  Since I have eth0 and eth1 I have put this in zones:
>
> fw      firewall
> xen0    ipv4
> xen1    ipv4
>
> ..and this in interfaces:
>
> xen0    xenbr0      detect      routeback
> xen1    xenbr1      detect      routeback
>
> Perhaps xen0 would be better named loc and xen1 named dmz.

Shorewall attaches absolutely no meaning to zone names so you can call them 
'foo' and 'bar' if you like; whatever has meaning to you.

>
> Is that it?

Looks fine.

-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@xxxxxxxxxxxxx
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

Attachment: pgp3yul19ywyx.pgp
Description: PGP signature

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

References:
- [Xen-users] Domain0 and firewalls
  - From: David Koski
- Re: [Xen-users] Domain0 and firewalls
  - From: Tom Eastep
- Re: [Xen-users] Domain0 and firewalls
  - From: David Koski

Prev by Date: Re: [Xen-users] Xen 3.0 on Ubuntu Dapper
Next by Date: [Xen-users] Re: Re: Re: Dom0 CPU?
Previous by thread: Re: [Xen-users] Domain0 and firewalls
Next by thread: [Xen-users] PCI passthrough working on Xen 3!
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.