thr3ads.net - Xen users - [Xen-users] networking problem, 2 nics , DMZ, internal net [Feb 2006]

If this information is useful, please help other people find it:
Share via:

barryns2@adelphia.net

2006-Feb-10 03:02 UTC

[Xen-users] networking problem, 2 nics , DMZ, internal net

here is the problem.

I am running a dom0 with two nics

eth0 wants to be my external if and I want to have 1 or more domU''s on
this network as a DMZ

eth1 wants to connect to a switch for my internal network, but I want one domU
in this network to run as a samba PDC

how can I set this up?  do I use bridging, routing, or routed nat, or some
combination.

Thanks,
Barry S



_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

Barry Sullivan

2006-Feb-10 18:44 UTC

head link

Re: [Xen-users] networking problem, 2 nics , DMZ, internal net

On Fri, 2006-02-10 at 02:52 -0700, John R. Shannon
wrote:> barryns2@adelphia.net wrote:
> > here is the problem.
> > 
> > I am running a dom0 with two nics
> > 
> > eth0 wants to be my external if and I want to have 1 or more
domU''s on this network as a DMZ
> > 
> > eth1 wants to connect to a switch for my internal network, but I want
one domU in this network to run as a samba PDC
> > 
> > how can I set this up?  do I use bridging, routing, or routed nat, or
some combination.
> > 
> > Thanks,
> > Barry S
> > 
> > 
> > 
> > _______________________________________________
> > Xen-users mailing list
> > Xen-users@lists.xensource.com
> > http://lists.xensource.com/xen-users
> 
> 
> This is the same setup I have.
> 
> Set up two bridges, one bridge includes eth0 the other eth1. Each domU 
> will have a virtual interface included in each bridge. For example:
> 
> 
> domain0$ xm vif-list www
> (vif (idx 0) (vif 0) (mac aa:00:00:00:00:02) (vifname vif2.0) (bridge 
> bridge0) (evtchn 22 4) (index 0))
> (vif (idx 1) (vif 1) (mac aa:00:00:00:01:02) (vifname vif2.1) (bridge 
> bridge1) (evtchn 23 5) (index 1))
> 
> Do not enable packet forwarding.
> 
with this setup are both interfaces on the same network?

I would like the dmz to be on a different network than the local net.


this is my vision, does it make sense?


                          internet
                             |
                           router
                             |
           mail(domU.0)-----if1-----www(domU.0)
                          computer
                            if2-----smb-pdc(domU.1)
                             |
                           switch
                 ____________|___________
                 |           |          |
               Hst1        Hst2        Hst3


_______________________________________________
Xen-users mailing list
Xen-users@lists.xensource.com
http://lists.xensource.com/xen-users

Xen users - Feb 2006 - networking problem, 2 nics , DMZ, internal net

[Xen-users] networking problem, 2 nics , DMZ, internal net

Re: [Xen-users] networking problem, 2 nics , DMZ, internal net