[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Firewalls

  • To: xen-users@xxxxxxxxxxxxxxxxxxx
  • From: "Dick Davies" <rasputnik@xxxxxxxxx>
  • Date: Sat, 15 Apr 2006 22:55:46 +0100
  • Delivery-date: Sat, 15 Apr 2006 14:56:22 -0700
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VRIFGOyoGwb7nz3kFmeFNqEKhcwuMzNNFpPcGn9HwHsfULErJIXYETZBmVI5AKYW0+Ttgk3NffiLLFaZY+57sORl+jlH7Ho+8jFvgbuIytMKFV35bpgVLVg0yhnry5RO2wtFF6dCQOiMLTejStQjHfGZXpSUHyyRChAHczTcdmg=
  • List-id: Xen user discussion <xen-users.lists.xensource.com>
On 15/04/06, Tom Eastep <teastep@xxxxxxxxxxxxx> wrote:

> The reason that you can't use your existing iptables rules in a Xen dom0 is
> that the networking configuration after xend starts is different from the
> environment before xend starts (there is a bridge added and traffic passing
> through that bridge is visible to netfilter; there are also additional
> interfaces added but those interfaces have no IP configuration so they don't
> present a compatibility problem).

Thanks, just found the

 http://wiki.xensource.com/xenwiki/XenNetworking

on the wiki. Makes a lot more sense than the mental model is was
working from :)

--
Rasputin :: Jack of All Trades - Master of Nuns
http://number9.hellooperator.net/

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.