[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Xen-users] Isolated network

To: "Jeff Sturm" <jeff.sturm@xxxxxxxxxx>, <Xen-users@xxxxxxxxxxxxxxxxxxx>
From: "Jonathan Tripathy" <jonnyt@xxxxxxxxxxx>
Date: Fri, 4 Jun 2010 16:20:17 +0100
Cc:
Delivery-date: Fri, 04 Jun 2010 08:22:57 -0700
List-id: Xen user discussion <xen-users.lists.xensource.com>
Thread-index: AcsD5l1okDBDeJBnT4iuJMV0LSr0mgAAIn9IAAQxvTAAAHCAKw==
Thread-topic: [Xen-users] Isolated network

Sorry, I think I worded my post wrong. What I meant was is there a way to make sure that the DomUs can't access the Dom0, i.e. so they are on an isolated network. By default in virt-manager, the Dom0 gets attached to each bridge created...

Simply don't assign an IP to the bridge device in your dom0.

-Jeff

-----------------------------------------------------------------------

Excellent

And this is secure? Could I make it any better by using ebtables or anything like that?

I just want to be careful as my machine will host guests for trusted clients holding sensitive information, as well as non-trusted clients (VPS hosting)

Thanks

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

Follow-Ups:
- RE: [Xen-users] Isolated network
  - From: Jeff Sturm

References:
- [Xen-users] Isolated network
  - From: Jonathan Tripathy
- Re: [Xen-users] Isolated network
  - From: Florian Manschwetus
- RE: [Xen-users] Isolated network
  - From: Jonathan Tripathy
- RE: [Xen-users] Isolated network
  - From: Jeff Sturm

Prev by Date: RE: [Xen-users] Isolated network
Next by Date: Re: [Xen-users] Isolated network
Previous by thread: RE: [Xen-users] Isolated network
Next by thread: RE: [Xen-users] Isolated network
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.