Hello to all, I have 6 xen-0 hosts that have two nics each. On all hosts, eth0 is enslaved to the primary bridge and is connected to the public switch. eth1 is enslaved to a private bridge and is connected to a private switch. What I hope to accomplish is providing every dom-u with two network interfaces, one public, one private. On the farm, there are 6 users, each one has about 12 guests running. What I would like to do is assign user "sam" a private /24, say 192.168.2.0/24 to connect his guests via LAN. I''d like to assign "sue" 192.168.3.0/24. I don''t want sam to be able to reach sue''s network, or sue to reach sam''s. I haven''t had much luck with google in finding a way to accomplish this, does anyone have any pointers? The private switch is just a brain dead gig-e switch. Somehow I was thinking I could accomplish this with ebtables, however I''m not so sure. I was also looking at using a routed config for eth1, while keeping eth0 bridged, but I''m also unsure of that. Thanks in advance, I''m rather stuck. Cheers, --Tim _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Hi all, Sorry, forgot to mention. All guests are assigned a static, unique MAC address when created. Cheers, --Tim On Fri, 2008-09-19 at 14:57 +0800, Tim Post wrote:> Hello to all, > > I have 6 xen-0 hosts that have two nics each. On all hosts, eth0 is > enslaved to the primary bridge and is connected to the public switch. > > eth1 is enslaved to a private bridge and is connected to a private > switch. > > What I hope to accomplish is providing every dom-u with two network > interfaces, one public, one private. On the farm, there are 6 users, > each one has about 12 guests running. > > What I would like to do is assign user "sam" a private /24, say > 192.168.2.0/24 to connect his guests via LAN. I''d like to assign "sue" > 192.168.3.0/24. > > I don''t want sam to be able to reach sue''s network, or sue to reach > sam''s. > > I haven''t had much luck with google in finding a way to accomplish this, > does anyone have any pointers? The private switch is just a brain dead > gig-e switch. Somehow I was thinking I could accomplish this with > ebtables, however I''m not so sure. > > I was also looking at using a routed config for eth1, while keeping eth0 > bridged, but I''m also unsure of that. > > Thanks in advance, I''m rather stuck. > > Cheers, > --Tim > > > _______________________________________________ > Xen-users mailing list > Xen-users@lists.xensource.com > http://lists.xensource.com/xen-users_______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Tim Post <echo@echoreply.us> writes:> I have 6 xen-0 hosts that have two nics each. On all hosts, eth0 is > enslaved to the primary bridge and is connected to the public switch. > > eth1 is enslaved to a private bridge and is connected to a private > switch. > > What I hope to accomplish is providing every dom-u with two network > interfaces, one public, one private. On the farm, there are 6 users, > each one has about 12 guests running. > > What I would like to do is assign user "sam" a private /24, say > 192.168.2.0/24 to connect his guests via LAN. I''d like to assign "sue" > 192.168.3.0/24. > > I don''t want sam to be able to reach sue''s network, or sue to reach > sam''s.Why don''t you create separate bridges for each user, and connect them amongst the dom0-s by separate vlans?> Somehow I was thinking I could accomplish this with ebtables,Yes you can, if you prefer, but the above is easier IMO. -- Regards, Feri. _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users