[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SPAM] Re: [Xen-users] DomU(s) in different subnets



You can certainly run multiple subnets on a single layer 2 network, but at this 
point your not segmenting traffic correctly, which means traffic from each of 
the subnets is "visible" to all of the other subnets - if someone assigns an IP 
on another subnet, they can access the traffic, and even without that, if they 
can put the network interface into promiscuous mode, they can see all of it, 
anyway.  So, there are some security implications there, along with bandwidth, 
broadcast, multicast, etc., concerns.

-Nick

>>> On 2009/12/17 at 15:07, Freddie Cash <fjwcash@xxxxxxxxx> wrote: 
> On Thu, Dec 17, 2009 at 1:59 PM, Sachin Goel <SACHIN.GOEL@xxxxxxxxxx> wrote:
> 
>> Isn't it possible that with only one bridge we have the virtual machines in
>> different physical subnets, if the gateway is configured to handle that ?
>>
> 
> With only 1 bridge, you only have 1 physical network connection, thus you
> only have 1 physical network.  You can have multiple logical subnets
> configured to use that network (192.168.0.0/24, 192.168.1.0/24,
> 192.168.2.0/24, etc).  But it's only 1 physical subnet.  (Although, I guess
> "subnet" is the wrong terminology here.)
> 
> 
> -- 
> Freddie Cash
> fjwcash@xxxxxxxxx




--------
This e-mail may contain confidential and privileged material for the sole use 
of the intended recipient.  If this email is not intended for you, or you are 
not responsible for the delivery of this message to the intended recipient, 
please note that this message may contain SEAKR Engineering (SEAKR) 
Privileged/Proprietary Information.  In such a case, you are strictly 
prohibited from downloading, photocopying, distributing or otherwise using this 
message, its contents or attachments in any way.  If you have received this 
message in error, please notify us immediately by replying to this e-mail and 
delete the message from your mailbox.  Information contained in this message 
that does not relate to the business of SEAKR is neither endorsed by nor 
attributable to SEAKR.

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.