[prev in list] [next in list] [prev in thread] [next in thread]
List: xen-users
Subject: Re: [Xen-users] issue with iptables antispoofing rules in xen4.8 generetab by vif-bridge and vif-com
From: spi () gmxpro ! de
Date: 2018-03-26 18:22:37
Message-ID: 5f9a7d54-8dee-b498-8aba-f787955342d8 () gmxpro ! de
[Download RAW message or body]
>>>
>>> On a side-note, the recommended way of configuring the network is doing it
>>> manually (i.e. defining the bridge in your OS configuration files). The issues
>>> with the script are numerous. For one, you can't do (the equivalent of)
>>> '/etc/init.d/networking restart', because then the Xen script is not run. Or
>>> you iptables state will fail because network devices aren't there yet. Etc.
>>>
>>> See:
>>> https://wiki.xenproject.org/wiki/Xen_Networking#Setting_up_bridged_networking
>>
>> Are you confusing the old 'network-bridge' with 'vif-bridge'?
>>
>> vif-bridge only attaches the dom0 side of the vif to the bridge.
>>
>> Hans
>
> Oh, ha, apparently I am. Never mind :)
>
Lucky me, I was about to confess that I have no clue waht you were
talking about ;-)
But still - can anyone confirm the iptables rules as automatically
generated are not working?
_______________________________________________
Xen-users mailing list
Xen-users@lists.xenproject.org
https://lists.xenproject.org/mailman/listinfo/xen-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic