[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-users] Networking how does it really work?

  • To: Rafael Weingartner <rafaelweingartner@xxxxxxxxx>
  • From: Todd Deshane <todd.deshane@xxxxxxx>
  • Date: Mon, 20 Jun 2011 21:39:51 -0400
  • Cc: Xen-user-list <xen-users@xxxxxxxxxxxxxxxxxxx>
  • Delivery-date: Mon, 20 Jun 2011 18:41:21 -0700
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:cc:content-type; b=ftrGtk6tOcD2esW1nEpLTlM9w1KM+jcKU3poB41iz8NizHxZEdafv4reGpYCzR31mA eIyASVI7u+ZVbLFrweUc8YeJiMgwkeHR2kH8HqmoEHwMpKkj3oQvS4rJtEeon1ak67Ms fcaiWjnMf5Q8k2nHYlRohh/Skbwj8DhVLgae8=
  • List-id: Xen user discussion <xen-users.lists.xensource.com>

On Mon, Jun 20, 2011 at 8:04 PM, Rafael Weingartner
<rafaelweingartner@xxxxxxxxx> wrote:
> Hey guys,
> I have some doubts about networking on XCP.
> When I create a VM and start it, the Xen server is creating a VIFx.x
> So, here is my doubts.
> When I start a VM and the Xen server creates this interface is it bridged
> automatically?

Xen bridges the guest traffic automatically.

You shouldn't need to do the below in order for it to work. Post the
output of brctl show and ethtool -i eth0. If you have other bridges
and physical interfaces post information about them as well.

There are several good books that cover Xen basics such as "Running
Xen" and "The Book of Xen". You may consider doing some background
reading for some of these basic concepts. Please do also post your
questions here with enough detail for us to understand what you are
trying to accomplish.


> Or do I need to forward its traffic through my LAN connection?
> I tried to forward the traffic from this interface to my eth0 but it seemed
> not work.
> Here is the script that I created and executed on Xen server:
> # Always accept loopback traffic
> iptables -A INPUT -i lo -j ACCEPT
> # Allow established connections, and those not coming from the outside
> iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
> iptables -A INPUT -m state --state NEW -i ! xenbr0 -j ACCEPT
> iptables -A FORWARD -i xenbr0 -o vif5.2 -m state --state ESTABLISHED,RELATED
> # Allow outgoing connections from the LAN side.
> iptables -A FORWARD -i vif5.2 -o xenbr0 -j ACCEPT
> # Masquerade.
> iptables -t nat -A POSTROUTING -o xenbr0 -j MASQUERADE
> # Enable routing.
> echo 1 > /proc/sys/net/ipv4/ip_forward
> _______________________________________________
> Xen-users mailing list
> Xen-users@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-users

Todd Deshane

Xen-users mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.