search for: brdmz

...h a dhcp address and all 3 can talk to the outside world and each other (my "flat network"). What I want is a tiered network with the first domU acting as a firewall with 3 nics vif = [ ''mac=aa:00:00:aa:99:10, bridge=xen-br0'', ''mac=00:00:00:aa:99:11, bridge=xen-brDMZ'', ''mac=00:00:00:aa:99:12, bridge=xen-brINT'' ] When I run the script below, the second and third domains can reach the firewall and each other on nets 192/168/10.0/24 via xen-brDMZ and can reach 192.168.120/24 via xen-brINT. With forwarding and routing applied, I can comm...

...I have two domUs, one running as a firewall and another running as a dmz: The dom0 has the following: - eth0 bridge (10.0.0.3/24) The domU-firewall has the following: - Direct passthrough PCI NIC (Public Internet) - Virtual NIC connected to the eth0 bridge on dom0 (10.0.0.1/24) - Bridge called brdmz for the dmz zone (10.0.2.1/24) The domU-dmz has the following: - Virtual NIC connected to the brdmz in domU-firewall (10.0.2.2/24) So far can I can make the domU-firewall and domU-dmz talk to each other without problem. Using IPTables/NAT on domU-firewall I can route to the public internet fr...

I am attempting to setup a firewall in a DomU. The firewall program I eventually want to run is Shorewall. Both my Dom0 and DomU are Debian Lenny 64 bit systems. The Dom0 has four physical network interfaces installed. Currently, one of the NICs is hidden using the pciback.hide command in the /boot/grub/menu.lst file. Similarly, the hidden NIC is passed to the DomU using the pci =