Does any bosy knows the best way of implimenting iptables firewall on the Dom0 in order to only allow selective packets in and out. I understand that it might be chanllenging due to the fact that xen''s environment creates a bridge where all the data passes to and from the guest domains. However, I am found in the situation in which I have protect some of the services that I are runnning on the DomUs by droping some packets and forwarding others. any hints or suggestions would be greatly appreciated.... Glopes --------------------------------- Abra sua conta no Yahoo! Mail, o único sem limite de espaço para armazenamento! --0-1757238628-1212079309=:29047 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Does any bosy knows the best way of implimenting iptables firewall on the Dom0 in order to only allow selective packets in and out. <br>I understand that it might be chanllenging due to the fact that xen''s environment creates a bridge where all the data passes to and from the guest domains. However, I am found in the situation in which I have protect some of the services that I are runnning on the DomUs by droping some packets and forwarding others.<br><br>any hints or suggestions would be greatly appreciated....<br><br><br>Glopes<br><p>  <hr size=1>Abra sua conta no <a href="http://br.rd.yahoo.com/mail/taglines/mail/*http://br.mail.yahoo.com/">Yahoo! Mail</a>, o único sem limite de espaço para armazenamento! --0-1757238628-1212079309=:29047-- --===============1476615835=Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users --===============1476615835==--