[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] DMZ on xen with Dom0 as gw

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Federico Tomassini <effetom@xxxxxxxxx>
Date: Fri, 14 Jul 2006 16:57:31 +0200
Delivery-date: Fri, 14 Jul 2006 07:57:27 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>

Hi alls,

I have to publish DomUs on the Net, with public IPs.

On my host, eth0 is configured with aliases to serve all these IPs:

               eth0   = 192.168.0.12
Net <-> Dom0-  eth0:1 = 192.168.0.13
               eth0:2 = 192.168.0.14

I would configure DomUs to have 10.0.100.0/24 IP address, and to
forward ( source/dest-natting) traffic, simulating a DMZ with Dom0 as
gateway:
   
            Dom0
        192.168.0.12  
Net <-> 192.168.0.13  <---> 10.0.100.2 DomU1
        192.168.0.14  <---> 10.0.100.3 DomU2

I have also to run a dhcp server for DomUs.

I read a lot of Docs, and ML archive.
I tried to apply these solutions, but without success.

I would like to ask which is the best way to create such scenario (and
first of all, is It a good scenario?)

For now, I tried to run dhcpd on dummy0 and to bridge DomUs on dummy0.
Then natting with iptables on Dom0.

Maybe I'm following a wrong way and my problems arise for that.

BR

efphe



_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- Re: [Xen-users] DMZ on xen with Dom0 as gw
  - From: Norman Zimmer

Prev by Date: Re: [Xen-users] Port forwarding problems
Next by Date: Re: [Xen-users] Xen migration
Previous by thread: E-MAIL ADDRESS WON THE PRIZE!!
Next by thread: Re: [Xen-users] DMZ on xen with Dom0 as gw
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.