Xen users - Aug 2009 - One nic multiple ip''s

I have one nic and 5 static ip''s. i use debian lenny.

How configure dom0 and domU, gets own ip address.
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25141074.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

nomid wrote:
>I have one nic and 5 static ip''s. i use debian lenny.
>
>How configure dom0 and domU, gets own ip address.
I think what you are asking is :

Your connection is via ethernet and your upstream provider gives you 
5 IPs (I''m guessing a /29 subnet). You want to use different IPs for 
Dom0 and each DomU.

It''s very simple, in each device you want to have a public IP, you 
configure it with the correct subnet mask, one IP from the range 
provided, and set the default gateway to the upstream providers 
router address.

Eg, if the IPs provided are from 1.2.3.18 to 1.2.3.22 and the 
providers router is at 1.2.3.17, then you might configure Dom0 as :
IP: 1.2.3.18, netmask 255.255.255.248, gateway 1.2.3.17
Your first DomU as :
IP: 1.2.3.19, netmask 255.255.255.248, gateway 1.2.3.17
and so on.

You would of course configure your Dom0 networking in bridge mode.


There are other ways to set things up. Some providers will give you a 
/29 subnet, but route your traffic over a point-point link with a 
different /30 subnet. Sticking with the same subnet as above, you''d 
want to run in routed mode, with an outside interface IP to match the 
link and an inside interface in your 1.2.3.16/29 subnet.


Yet another option is via proxy arp.


You may be able to pick some info from these articles :
http://shorewall.net/XenMyWay.html
http://shorewall.net/XenMyWay-Routed.html
They are how the author of the Shorewall firewall package configured 
his systems (two different ways) with similar requirements.

-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

Current /etc/network/interfaces settings:

auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 193.34.X.88
netmask 255.255.255.128
gateway 193.34.X.1

auto eth0:0
iface eth0:0 inet static
        address 93.104.X.230
        netmask 255.255.255.128
        gateway 193.34.X.1

auto eth0:1
iface eth0:1 inet static
        address 93.104.X.231
        netmask 255.255.255.128
        gateway 193.34.x.1
..
.
.
ip''s are 193.34.X.88 and 93.104.x.230 - .233

Now all ip''s working. If i try 93.104 adress on domU. 
Dom0 can acces net, but DomU not.

Off cource i remove other Virtual nic berore testing xen. (if try these
settings boot xen, eth0 gone)


Simon Hobson-2 wrote:
> 
> nomid wrote:
>>I have one nic and 5 static ip''s. i use debian lenny.
>>
>>How configure dom0 and domU, gets own ip address.
> 
> I think what you are asking is :
> 
> Your connection is via ethernet and your upstream provider gives you 
> 5 IPs (I''m guessing a /29 subnet). You want to use different IPs
for
> Dom0 and each DomU.
> 
> It''s very simple, in each device you want to have a public IP, you
> configure it with the correct subnet mask, one IP from the range 
> provided, and set the default gateway to the upstream providers 
> router address.
> 
> Eg, if the IPs provided are from 1.2.3.18 to 1.2.3.22 and the 
> providers router is at 1.2.3.17, then you might configure Dom0 as :
> IP: 1.2.3.18, netmask 255.255.255.248, gateway 1.2.3.17
> Your first DomU as :
> IP: 1.2.3.19, netmask 255.255.255.248, gateway 1.2.3.17
> and so on.
> 
> You would of course configure your Dom0 networking in bridge mode.
> 
> 
> There are other ways to set things up. Some providers will give you a 
> /29 subnet, but route your traffic over a point-point link with a 
> different /30 subnet. Sticking with the same subnet as above,
you''d
> want to run in routed mode, with an outside interface IP to match the 
> link and an inside interface in your 1.2.3.16/29 subnet.
> 
> 
> Yet another option is via proxy arp.
> 
> 
> You may be able to pick some info from these articles :
> http://shorewall.net/XenMyWay.html
> http://shorewall.net/XenMyWay-Routed.html
> They are how the author of the Shorewall firewall package configured 
> his systems (two different ways) with similar requirements.
> 
> -- 
> Simon Hobson
> 
> Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
> author Gladys Hobson. Novels - poetry - short stories - ideal as
> Christmas stocking fillers. Some available as e-books.
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@lists.xensource.com
> http://lists.xensource.com/xen-users
> 
> 
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25146773.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

nomid wrote:
>Current /etc/network/interfaces settings:
>
>auto lo
>iface lo inet loopback
>
>auto eth0
>iface eth0 inet static
>address 193.34.X.88
>netmask 255.255.255.128
>gateway 193.34.X.1
>
>auto eth0:0
>iface eth0:0 inet static
>         address 93.104.X.230
>         netmask 255.255.255.128
>         gateway 193.34.X.1
>
>auto eth0:1
>iface eth0:1 inet static
>         address 93.104.X.231
>         netmask 255.255.255.128
>         gateway 193.34.x.1
>..
>.
>.
>ip''s are 193.34.X.88 and 93.104.x.230 - .233
>
>Now all ip''s working. If i try 93.104 adress on domU.
>Dom0 can acces net, but DomU not.
You DO NOT add the IPs to Dom0, if Dom0 is in bridging mode then you 
simply add the IP you want to DomU. This is just as you would do if 
you had a ''real'' network of ''real'' machines
- each machine MUST have
a unique address not used by any other machine in the world.


-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

xend is bridge enabled
dom0 /etc/network/interfaces:

auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 193.34.X.88
netmask 255.255.255.128
gateway 193.34.X.1
-----------------------------------------
domU /etc/network/interfaces:

auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 93.209.x.104
netmask 255.255.255.128
gateway 193.34.X.1

I try these, its right, or missing something?


Simon Hobson-2 wrote:
> 
> nomid wrote:
> 
>>Current /etc/network/interfaces settings:
>>
>>auto lo
>>iface lo inet loopback
>>
>>auto eth0
>>iface eth0 inet static
>>address 193.34.X.88
>>netmask 255.255.255.128
>>gateway 193.34.X.1
>>
>>auto eth0:0
>>iface eth0:0 inet static
>>         address 93.104.X.230
>>         netmask 255.255.255.128
>>         gateway 193.34.X.1
>>
>>auto eth0:1
>>iface eth0:1 inet static
>>         address 93.104.X.231
>>         netmask 255.255.255.128
>>         gateway 193.34.x.1
>>..
>>.
>>.
>>ip''s are 193.34.X.88 and 93.104.x.230 - .233
>>
>>Now all ip''s working. If i try 93.104 adress on domU.
>>Dom0 can acces net, but DomU not.
> 
> You DO NOT add the IPs to Dom0, if Dom0 is in bridging mode then you 
> simply add the IP you want to DomU. This is just as you would do if 
> you had a ''real'' network of ''real''
machines - each machine MUST have
> a unique address not used by any other machine in the world.
> 
> 
> -- 
> Simon Hobson
> 
> Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
> author Gladys Hobson. Novels - poetry - short stories - ideal as
> Christmas stocking fillers. Some available as e-books.
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@lists.xensource.com
> http://lists.xensource.com/xen-users
> 
> 
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25148288.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

nomid wrote:
>xend is bridge enabled
>dom0 /etc/network/interfaces:
>
>auto lo
>iface lo inet loopback
>
>auto eth0
>iface eth0 inet static
>address 193.34.X.88
>netmask 255.255.255.128
>gateway 193.34.X.1
>-----------------------------------------
>domU /etc/network/interfaces:
>
>auto lo
>iface lo inet loopback
>
>auto eth0
>iface eth0 inet static
>address 93.209.x.104
>netmask 255.255.255.128
>gateway 193.34.X.1
>
>I try these, its right, or missing something?
No - that''s not right.

Apologies, but I missed that you had 193.34.X.88 and 93.209.x.104 - 
two entirely different subnets. 193.34.X.1  is not a valid gateway 
for 93.209.x.104, so that machine would have no connectivity.

BTW - this isn''t specific to XEN, it''s a general networking/IP
addressing issue.

I''m still trying to figure out exactly what you are being provided 
with in terms of IP addresses. Is 193.34.X.88 the only address you 
have in the 193.34.X.0/25 subnet ? Did your ISP give you a gateway 
address to use in the 93.209.x.104/25 subnet ?


My **guess** is that 193.34.X.88 is your "outside" address, and that 
your ISP routes the 93.209.x.0/25 addresses to it. If that is case, 
you need a router between 193.34.X.88 and 93.209.x.0/25. My 
preference is to use a separate DomU for a two port firewall (see the 
thread titled "Question about using Xen in a periphery 
firewall/router" from last week). Alternatively you''ll want to run
your Som0 in routed mode with 193.34.X.88 as your outside address, 
and something in 93.209.x.0/25 for your inside address.

-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

193.34.. Is Main ip. and 93.209.. are extra ip''s.
I have received only ip (93.209..) addresses. 
Not gateway address, or other ip infos.


Simon Hobson-2 wrote:
> 
> I''m still trying to figure out exactly what you are being provided
> with in terms of IP addresses. Is 193.34.X.88 the only address you
> have in the 193.34.X.0/25 subnet ? Did your ISP give you a gateway
> address to use in the 93.209.x.104/25 subnet ? 
> 
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25149629.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

nomid wrote:
>193.34.. Is Main ip. and 93.209.. are extra ip''s.
>I have received only ip (93.209..) addresses.
>Not gateway address, or other ip infos.
OK, I think my guess was correct and you want to run a routed setup. 
Either run Xen in routed mode and connect your Dom0 to the outside 
network (with a 193.34 address), or run a DomU as a two-port firewall 
as per the earlier thread I referenced. I would suggest the latter - 
it''s a lot easier to setup securely (firewalling/iptables can be 
tricky to get right in Dom0).

-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

I ask for ISP more info at IPs.
I get all nessesery info:

Addresses:   93.104.X.230-233
Network:  	93.104.X.0
Gateway: 	93.104.X.1
Broadcast: 	93.104.X.255
Netmask: 	255.255.255.0

How to setup? simple enable bridge and use these settings to domu ?
i can use 93.104.. adress also dom0 if nessesery. (if easiest to setup)


Simon Hobson-2 wrote:
> 
> nomid wrote:
>>193.34.. Is Main ip. and 93.209.. are extra ip''s.
>>I have received only ip (93.209..) addresses.
>>Not gateway address, or other ip infos.
> 
> OK, I think my guess was correct and you want to run a routed setup. 
> Either run Xen in routed mode and connect your Dom0 to the outside 
> network (with a 193.34 address), or run a DomU as a two-port firewall 
> as per the earlier thread I referenced. I would suggest the latter - 
> it''s a lot easier to setup securely (firewalling/iptables can be 
> tricky to get right in Dom0).
> 
> -- 
> Simon Hobson
> 
> Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
> author Gladys Hobson. Novels - poetry - short stories - ideal as
> Christmas stocking fillers. Some available as e-books.
> 
> _______________________________________________
> Xen-users mailing list
> Xen-users@lists.xensource.com
> http://lists.xensource.com/xen-users
> 
> 
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25151043.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

nomid wrote:
>I ask for ISP more info at IPs.
>I get all nessesery info:
>
>Addresses:   93.104.X.230-233
>Network: 	93.104.X.0
>Gateway:	93.104.X.1
>Broadcast:	93.104.X.255
>Netmask:	255.255.255.0
>
>How to setup? simple enable bridge and use these settings to domu ?
Given that information, yes, just use bridge mode and configure each 
server (Dom0 or DomU) with one of those IPs and that gateway.
>i can use 93.104.. adress also dom0 if nessesery. (if easiest to setup)
You can use that as well as, but it''s probably easiest to just ignore 
it. You can use it on Dom0 or DomU.

-- 
Simon Hobson

Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed
author Gladys Hobson. Novels - poetry - short stories - ideal as
Christmas stocking fillers. Some available as e-books.

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

-----Original Message-----
From: nomid <mikahuhta@kolumbus.fi>
Sent: Wednesday, 26 August 2009 7:45 PM
To: xen-users@lists.xensource.com <xen-users@lists.xensource.com>
Subject: Re: [Xen-users] One nic multiple ip's


193.34.. Is Main ip. and 93.209.. are extra ip's.
I have received only ip (93.209..) addresses. 
Not gateway address, or other ip infos.


Simon Hobson-2 wrote:
> 
> I'm still trying to figure out exactly what you are being provided
> with in terms of IP addresses. Is 193.34.X.88 the only address you
> have in the 193.34.X.0/25 subnet ? Did your ISP give you a gateway
> address to use in the 93.209.x.104/25 subnet ? 
> 
-- 
View this message in context:
http://www.nabble.com/One-nic-multiple-ip%27s-tp25141074p25149629.html
Sent from the Xen - User mailing list archive at Nabble.com.


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users