|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [Xen-users] transparant (secure) bridge
On Tue, Apr 08, 2008 at 05:50:56PM +0200, Jeroen Kleijer wrote: > Hi all, > > I've been reading up on the xen networking options / differences as > written in http://wiki.kartbuilding.net/index.php/Xen_Networking and > see a couple of examples that interest me like the (default) bridging > but also the routed networking. > > However, the thing I'm most interested in would be transparant network > bridging like a firewall bridge where the bridging host (dom0) has no > exposed IP address to the outside world and is only accessible through > the console or a completely separate management interface (eth1, not > accessible from any of the domU's) > > Since dom0 has no IP interface exposed to the outside but only acts as > a bridge from the outside to the domU's, that would make the dom0 a > bit more secure. > > Would such a implementation be feasible or does the dom0 network > interface always have to have an IP stack for the bridging to work? The IP interface doesn't have to have an IP address, just be up, but I don't know if such configuration is supported by xen's network configuration scripts. -- lfr 0/0 Attachment:
pgpgJbv9d4y04.pgp _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |