similar to: Port forwarding from non-xenbridged external interface to xen-interface

Hi all, I have a strange problem with GPL PV 0.8.8 (0.6.4 did work). On my 2nd vif I cannot establish TCP connections. The 3rd IP packet (ACK from XEN-Image) is not forwarded by XEN/DOM0-Bridge. If I boot Windows without /GPLPV option, everything works fine. I did some investigation and found out that the packages arrive differently if GPLPV is enabled. "br_inet" is a bridge

Hi * in xend-config.xsp I have: ******************************** (network-script network-route) (vif-bridge xen-br0) (vif-script vif-bridge) ******************************** and in /etc/network/interfaces ********************************* iface eth0 inet static address 0.0.0.0 auto xen-br0 iface xen-br0 inet static pre-up ifconfig eth0 up pre-up brctl addbr xen-br0 pre-up brctl addif

Hi, I have a few questions about the inner workings of netfilter (a graphical layout of my network setup @ https://aequorin.homeunix.net:62389/local/media/network-graph.png) 1) These are the syslog entries for some simple connection tests. Shorewall/netfilter has been set to record all stateful connections SSH is recognized as phys(eth0) -> $FW traffic. This is because PHYSIN is

Hi, I've some problems with this network : [ host1 eth0: 10.22.2.4/8 ] [ host2 eth0:10.22.2.5/8 default route host3] \ / SWITCH internet | | |

Hello All, I am trying to implement OpenVPN on Fedora core Linux 3 with the latest pathces installed. This server is used only as firewall/internet gateway/proxy/VPN server, with kernel 2.6.1-1.27.FC3 and kernel 2.6.1-1.27.FC3 SMP It has two NIC''s eth0 (10.0.0.150) connected to ADSL, eth1 (192.168.3.12) connected to the local network. I use shorewall 2.4 on this machine. I like to test

I''m working on setting up a new router/server/etc. box. I''m using Proxmox as the base system (Debian Lenny basically). I''m trying to figure out the right way to configure Shorewall on it. I''ve looked at some of the bridging info but they seem to all be talking about single-interface setups. Could someone look over my setup and give me some input into the

(if this post gets line-feed-mangled please read http://www.dl.reneschmidt.de/shorewallxenpost.txt - that''s an unmangled version, thank you) Hello, first I would like to thank the Mr. Eastep and contributors for this great piece of software and superb documentation. I have a SOHO server (Debian testing) that I''m using for several purposes so I''ve set up a Xen

Dear Xen-Users, I use Xen 3.1.0_15042 on my OpenSuSE-10.3-computer. Without starting the xen-kernel I can connect my second computer via my native computer to the internet. After starting the xen-kernel the xen-bridge came automatically up. How can I configure the xen-bridge or the xen-devices? I get routing problems: Feb 20 18:31:36 intel6550 kernel: martian source 217.237.149.142 from

Hi We have the following situation: A hypervisor using KVM-Qemu/libvirt with a single VM. The VM has the internal IP 192.168.122.151 on the default network pool using virbr0 on the hypervisor. We've set up netfilter rules to DNAT requests on one IP of the hypervisor to the VM. So, first of all, forwarding to the internal IP range is allowed: > $IPTABLES -I FORWARD -m state -d

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=479 Summary: tunnel0 and br0 Product: iptables Version: 1.2.11 Platform: i386 OS/Version: other Status: NEW Severity: normal Priority: P2 Component: iptables AssignedTo: laforge@netfilter.org ReportedBy: tom@tomdeb.org I have a ipsec

Objet : Xend start and after lose network Hi everybody : My configuration : Dapper 6.06 LTS with all updates Xen 3.0.2.2 My problem : After making ''xend start'', I lose network connections between my server and local network or internet. Nota : domU cas normally access to network I read about a similar problem in the bugtracker (N. 62) but it seems that this is normally

Hi! As noted by Chris Rankin on a mail to netfilter-devel and to the linux-kernel mailing list (subject: 2.6.12: connection tracking broken?), there is a problem with the connection tracking of iptables when one of the interfaces is a bridge. On my tests here I have setup a connection between two machines using a real interface (eth0) and then the same setup using a bridge interface (br0) to

Hi, If one sets xend to use network-bridge and there are no bridges already present then it seems that xend will clone eth0 to peth0, create xenbr0 and add peth0 and vif0.0 as ports on that bridge. If on the other hand xenbr0 is created in /etc/network/interfaces then xend will not do any of that peth0 stuff, nor will it add vif0.0 to xenbr0, yet (barring some changes in iptables rules) things

This patch adds an ACM hook into the network scripts (/etc/xen/scripts). It adds iptables rules that enforce mandatory access control on network packets exchanged between virtual interfaces. If ACM is active, this patch sets the default FORWARD policy in Dom0 to DROP and adds iptables ACCEPT rules between vifs that belong to domains that are permitted to share (determined by using the

Package: xen-utils-common Version: 3.2.0-2 Hello We used the script "network-bridge" on our Xen servers based on "etch" (xen-utils-common 3.0.3-0-2) to setup bridge configuration. This script created a bridge "xenbr0", renamed "eth0" to "peth0", renamed "veth0" to "eth0" and added "peth0" and "vif0.0" to

Hello, I have the need to connect 2 remote site with vpn, the windows pc of the 2 site it can share the HD and printer. This is my configuration : LOCAL NETWORK A : ip from 192.168.10.2 to 192.168.10.99 | | | | eth0: 192.168.10.1 FIREWALL A : ( with debian ; openvpn ver. 2.0.beta15 ; shorewall ver 2.0.11 ) eth1 : xxx.xxx.xxx.xxx ( pubblic ip address ) | | | | INTERNET | | | eth1 :

The bridging documentation (http://shorewall.net/2.0/bridge.html) has been expanded and there is a refresh of the bridging code (ftp://shorewall.net/pub/shorewall/Bridging and http://shorewall.net/pub/shorewall/Bridging). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net

Hello Everyone, I have set up a xen server with 10 physical network devices using the bridge mode of XEN. This is because I want to split and separate the network traffic for security reasons. Maybe the best way is to use pci back hide. But I want to understand what is going on here. For all testings I have only activated eth[0-3]. My first tests were successful. I have created a VM using

hi fellow XEN-users: I have been trying hard to get this problem fixed, hope I can get some help here. Thanks in advance for your time. I have a typical dom0 + domU XEN setup. after I start xend and network-bridge, I get the default network setup, , peth0 -------- bridge ------------------------------------------------------- |

I''ve just installed Xen on a new CentOS 5.1 system, and I can''t seem to make xenbr0 connect to the network. This system has a single physical network card. Apart from creating a few DomU guests, I have not changed any of the configuration. After running network-bridge, xenbr0 and friends are created, but the address and routing info is not moved. James # ip addr