[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Xen-users] To use ebtables or iptables
- To: Tapas Mishra <mightydreams@xxxxxxxxx>
- From: Grant McWilliams <grantmasterflash@xxxxxxxxx>
- Date: Sat, 10 Apr 2010 11:44:24 -0700
- Cc: Xen List <xen-users@xxxxxxxxxxxxxxxxxxx>, linux-poweredge@xxxxxxxx
- Delivery-date: Sat, 10 Apr 2010 11:46:01 -0700
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=AxumBjs7PfN+YWJxzFFoBvf9eGgRF3Ta4jp0jeIGJF8CkwH47T1CrOJJ2xmHJWJAsx f+15TPJ+edQ3vfwC9I88tDo5LUXH6mg5vT8yC2zJG8LjlUDhNTM1zab3pactIW2epY2k pB0Ti7o+u2fXQLwYkXCoqkgfch/tG+NcjdHUQ=
- List-id: Xen user discussion <xen-users.lists.xensource.com>
On Sat, Apr 10, 2010 at 10:42 AM, Tapas Mishra <mightydreams@xxxxxxxxx> wrote:
I have DomU instances running on a Dom0 which has a public IP I want
to be able to provide internet to these DomU instances also.So I had
thought of setting a squid proxy .
I am aware of setting IPTABLES I have done it on non xen machines.Some
one who have done it on a server that runs Xen please share some thing
as how should I go for it.
The Dom0 will be having a public IP and I want all the DomU traffic to
masquarade through it.
Some sample configurations may help.
http://ebtables.sourceforge.net/br_fw_ia/br_fw_ia.html
--
Tapas
Is your intention for those DomU's to be accessed from the outside or just that they can access the outside?
If it's the latter you can use the network-nat and vif-nat scripts included in Xen. If it's the former you need to have
all DomUs come up on the same bridge, then create a dummy0 interface and add it to that bridge and create
firewall rules to direct traffic in and allow it back out.
Grant McWilliams
Some people, when confronted with a problem, think "I know, I'll use Windows."
Now they have two problems.
_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
|
