Hi, I´m trying to setup the following scenario: <intranet> ------------------->| xen bridge=intranet | eth1 | -------> <internet> <virtual_machines> ------>| netdev=eth0 | <nat> | I mean, I have a xen machine with two nics, one connected to a intranet and the other to the internet. As I want virtual machines and real intranet machines on the same network I´m using the xen bridge scripts to create a bridge called "intranet". This work as expected and virtual machines, real machines and xen can all "see" and ping each other. But xen is not NATing the packets sent to internet! I can see the packets coming out unnated. The relevant configs: /etc/xen/xend-config.sxp (network-script ''network-bridge netdev=eth0 bridge=intranet'') (vif-script vif-bridge) /etc/network/interfaces auto eth0 iface eth0 inet static address 10.0.0.254 netmask 255.255.255.0 auto eth1 iface eth1 inet static address 192.168.0.22 netmask 255.255.255.0 gateway 192.168.0.1 /etc/network/nat.sh #!/bin/sh iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE echo 1 > /proc/sys/net/ipv4/ip_forward A tcpdump -n -i eth1 shows packets coming out unnated. Is this expected? is there a way to make this work as expected? -- Christian Lyra PoP-PR/RNP _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users