Falko Tesch
2007-Feb-14 07:40 UTC
[Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
Hi Folks, XEN seems to me to be the ideal partner to create a complete DMZ with firewall, router, "Bastios Host(s)" etc within a single PC. So far, I haven''t found any cookbook or how to (at least for the beginning). Anyone knows of such thing? Regards Falko _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Christian Horn
2007-Feb-14 07:53 UTC
Re: [Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
On Wed, Feb 14, 2007 at 08:40:01AM +0100, Falko Tesch wrote:> > XEN seems to me to be the ideal partner to create a complete DMZ with > firewall, router, "Bastios Host(s)" etc within a single PC. > > So far, I haven''t found any cookbook or how to (at least for the beginning).How about the documentation on networking? There is also software that can prevent you from accidentially running two vms on the same dom0 that should remain on separate dom0 all the time (for security- or reliability-reasions or whatever). Christian _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Falko Tesch
2007-Feb-14 09:29 UTC
Re: [Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
Well, sound good (at least to start somewhere...) So, there''s any link? Regards Falko Christian Horn schrieb:> On Wed, Feb 14, 2007 at 08:40:01AM +0100, Falko Tesch wrote: >> XEN seems to me to be the ideal partner to create a complete DMZ with >> firewall, router, "Bastios Host(s)" etc within a single PC. >> >> So far, I haven''t found any cookbook or how to (at least for the beginning). > > How about the documentation on networking? > There is also software that can prevent you from accidentially running two vms > on the same dom0 that should remain on separate dom0 all the time (for security- > or reliability-reasions or whatever). > > Christian > > _______________________________________________ > Xen-users mailing list > Xen-users@lists.xensource.com > http://lists.xensource.com/xen-users_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Tijl Van den Broeck
2007-Feb-14 09:36 UTC
Re: [Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
See the xensource wiki. Can''t miss all the docs there. The rest of it, is alot of mailing list archive browsing :-) _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Jochen Hebbrecht
2007-Feb-14 09:49 UTC
Re: [Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
Hmm, I''m also interested in setting up a DMZ, but I can''t find the information on the Wiki? :-/ Tijl Van den Broeck schreef:> See the xensource wiki. Can''t miss all the docs there. The rest of it, > is alot of mailing list archive browsing :-) > > _______________________________________________ > Xen-users mailing list > Xen-users@lists.xensource.com > http://lists.xensource.com/xen-users > >_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Olivier Le Cam
2007-Feb-15 11:29 UTC
Re: [Xen-users] Cookbook/HowTo for using XEN to create a complete DMZ?
Jochen Hebbrecht wrote:> Hmm, I''m also interested in setting up a DMZ, but I can''t find the > information on the Wiki? :-/A good starting point: http://web.mornfall.net/blog/virtual_firewall__44___nat_and_dmz_with_xen.html BTW, I''m working here on a GPL security server designed for the schools based on Xen, with 3 domUs. One is acting as a firewall + squid/squidGuard + network services for the LAN, a second is for a web server + SMTP + various web applications (like student results...) in a DMZ and a third (optionnal) for hosting a Linux/Debian ready to use (also in the DMZ). An automatic installer has been developped for to help teachers who have no knowledge on Linux to install the server. It works with a central platform where we are remotely managing all the deployed servers from. The teachers can adapt the server settings for their personal needs through a web interface but they don''t have to worry on the system side, we deal with all for them. Don''t know if this can be of any interest for the Xen-users readers but who knows! NB: This project is preliminary developed in France and some texts are still not translated into english. Regards, -- Olivier Le Cam Département des Technologies de l''Information et de la Communication CRDP de l''académie de Versailles _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users