[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-users] Question listed to VM packet marking


I am collecting VM network packets at hypervisor. I want to identify which packet is generated by which VM. A packet may be IP spoofed. Hence i do not want to differentiate them based on their VM IP.

One solution could be to mark each VM packet by its domain ID field by applying ebtable rules at the VM start up script of Xen. This will apply packet: mark with domain id. 

My question is how to implement that? and how to decode the packet:mark information when it reaches to hypervisor.

Any other way??

Xen-users mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.