[TriLUG] XEN, iptables and bridge configuration

Sean Myers smyers at americanri.com
Tue May 6 13:00:34 EDT 2008


It looks to me like the bridge is the 192.168.122.0 network. Is that right? Are
you doing any kind of NAT with that to work with the 192.168.3.0 (I assume /24?)
network?

I will say that this looks very different from what I'm used to in Debian-land,
where virtual interfaces are placed on a bridge along with the physical
interface on Dom0, one bridge per physical interface. In Dom0, none of the
interfaces on the bridge actually have addresses assigned to them, they are all
delivered to the xen domains and the domain itself does its own addressing.

Without being able to get my hands on the system and see exactly what's going
on, I think that my lack of experience in administering Xen in FC is certainly
hindering my ability to help. My apologies.

--
Sean Myers
System Administrator
American Research Institute
(919) 228-4961


Shambho wrote:
> Thanks Sean.
> 
> brctl is installed and am using the network-bridge script.
> 
> I can see the following interfaces:
> 
> eth0:  ip address:  192.168.3.100 (this is the virtual interface with an
> ipaddress on my external network)
> lo
> peth0: the physical network card
> vif2.0:
> virbr0:  ip address: 192.168.122.1
> 
> My domU gets an ip on 192.168.122.0 network and am able to ping devices on
> 192.168.3.0 network from domu
> 
> Now, I need to be able to reach services on domu.
> 
> Thanks a bunch for your time.
> 
> Hari
> 
> 
> 
> 
> On Mon, May 5, 2008 at 11:01 AM, Sean Myers <smyers at americanri.com> wrote:
> 
>> If you're bridging, you shouldn't need to involve iptables. Make sure
>> you've got
>> brctl installed, and then use the 'network-bridge' script included with
>> the Xen
>> distro. It should be that simple, but if it's not we can dig a little
>> deeper.
>>
>> --
>> Sean Myers
>> System Administrator
>> American Research Institute
>> (919) 228-4961
>>
>>
>> Shambho wrote:
>>> Hi all
>>>
>>> I have been struggling with a simple fc8 / xen setup. Just need to
>> expose
>>> the domU network to the external network and have been unable to do so.
>>>
>>> Was wondering if someone could please send me their working
>> configuration,
>>> would be eternally greatful!
>>>
>>> All I want is to be able to have the guest vm exposed to the external
>>> network.
>>>
>>> Thanks
>>> Hari
>> --
>> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
>> TriLUG Organizational FAQ  : http://trilug.org/faq/
>> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>>



More information about the TriLUG mailing list