Hi,
i think it''s a better practise to leave dom0 for administrative tasks
and
setup squid in a domU.
By using the default xen-network-bridge, you''re able to setup iptables
in the domU without using any bridge-specific stuff.
David schrieb:> Still learning Xen, and would like to know if it''s possible to run
Squid
> in D0 when running in bridging mode. I have iptables and ebtables
> going, and am able to log packets with those, but can''t seem to
get any
> traffic out of the bridge into Squid in D0 (or through iptables in D0,
> for that matter).
>
> Information I''ve gathered so far is that I need
> net.bridge.bridge-nf-call-iptables = 1, and need the following command
> to have packets accepted by the bridge:
> ebtables -t broute -A BROUTING -p ipv4 --ip-proto 6 --ip-dport 80 -j
> redirect --redirect-target ACCEPT
>
> Not sure what I need from here. Are there other bridge or iptables
> settings I need to check? Is there some special iptables command
I''m
> missing to have the network traffic go through D0 when bridging?
>
> Thanks,
> David
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Xen-users mailing list
> Xen-users@lists.xensource.com
> http://lists.xensource.com/xen-users
--
Stephan Seitz
Senior System Administrator
*netz-haut* e.K.
multimediale kommunikation
zweierweg 22
97074 würzburg
fon: +49 931 2876247
fax: +49 931 2876248
web: www.netz-haut.de <http://www.netz-haut.de/>
registriergericht: amtsgericht würzburg, hra 5054
_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users