[Xen-users] SNAT woes.

["Chris Fanning" <christopher.fanning@xxxxxxxxx>]

Hello all,

I have a SNAT question

           eth0 --- dom0 --- eth1
router --|
           eth0 --- domU --- eth1

I am running X terminales against domU.
The X terminals are on the domU-eth1 network.
when my default gateway is the router, everything works as expected.

But I want to use an ipip tunnel from both dom0 and domU
So I thought that dom0 would be my best default gateway and then set
the tunnel up on dom0.

I change the default gateway on domU to point at dom0.eth0
and on dom0
iptables -t nat -A POSTROUTING -o eth0 -s domU.eth0.ip -j SNAT
--to-source dom0.eth0.ip
This works fine. Xterminal traffic (source ip domU.eth0.ip leaves the
box from dom0.eth0.ip)

But I also have some wokstations on the Xterminal network and I'd like
to keep the source domU.eth1.ip_range when traffic goes through the
tunnel so.
on domU I change the gateway to dom0.eth1
iptables -t nat -A POSTROUTING -o eth0 -s domU.eth1.ip_range -j SNAT
--to-source dom0.eth0.ip
This doesn't work. I can't see the difference between on exaple and
the other, so why is it failing?

my /etc/xen/xend-config.sxp calls
(vif-script vif-bridge)

I hope I have explained myself ;(
any pointers please?

Thankyou.
Chris.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users