[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] ip source access policy per domU

To: xen-users@xxxxxxxxxxxxxxxxxxx
From: Thomas <thomas@xxxxxxxxxxxxxxxx>
Date: Mon, 2 Oct 2006 10:09:15 -0500
Delivery-date: Mon, 02 Oct 2006 08:07:51 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>

Is there a recommended per guest configuration directive to specifythe only IP allowed to traverse traffic (ingress/egress) via thevirtual bridge to the domU?

Current suggestions include MAC based ip access control at the layer3 level, however I'd like to know if there is a more granular methodof controlling IP based usage per guest, because it now appears thatall IG/EG traffic over the switch port only sees the MAC address fordom0.

E.g. netmask 10.0.0.0/24 limit guest domain to 10.0.0.10 and notallow traffic from any other source addresses on this netmask.


Thanks

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- Re: [Xen-users] ip source access policy per domU
  - From: James Oakley

Prev by Date: Re: [Xen-users] Network based storage - NBD/AoE/iSCSI other?
Next by Date: Re: [Xen-users] Network based storage - NBD/AoE/iSCSI other?
Previous by thread: [Xen-users] exact Core 2 Duo setup supporting Intel-VT
Next by thread: Re: [Xen-users] ip source access policy per domU
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.