Home > IT Blogs > Open Source Software and Linux/

Open Source Software and Linux:

domU

1
December 13, 2008  10:59 PM

Adding the iptables firewall to the Xen domU (part 2)



Posted by: Xjlittle
centos, dom0, domU, Firewalls, iptables, Linux, pciback, red hat, xen

In my last column we set up a physical NIC in our Xen domU to expose it to the internet and setup our iptables firewall. At this point you should have 2 interfaces in your domU. One should be facing the internet and have an IP Address assigned from your ISP. The other should be a typical Xen...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

December 12, 2008  7:56 PM

Setting up a physical NIC for a firewall on a Xen domU (Part 1)



Posted by: Xjlittle
centos, dom0, domU, domU firewall, pciback, red hat, Virtualization, xen, xen firewall

Recently I brought up a new Xen server that needed an iptables firewall on a domU. My first thought had been to setup the firewall on dom0 but that turned out to be a difficult task because of all of the virtual interfaces that are created. Red Hat/Centos also installs a set of rules by default...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

November 17, 2008  6:32 PM

Setting up your firewall on domU with iptables



Posted by: Xjlittle
centos 5, dom0, domU, domU firewall, Firewalls, iptables, pciback, xen

As discussed in an earlier post you must first hide your NIC from dom0 to set up your iptables firewall on your domU. After you have successfully hidden the NIC from dom0 then we can proceed to our domU firewall setup. You must first decide which domU that you are going to use for a firewall. ...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

November 11, 2008  2:59 AM

CentOS 5 and pciback aka hiding pci card from Xen DOM0



Posted by: Xjlittle
dom0, domU, pciback. pciback.hide, xen, xen pciback. centos xen

I just recently spent more hours than I care to think about getting a NIC in Xen Dom0 hidden and passed to a DomU via pciback in CentOS 5. Lesson number 1: pciback or pciback.hide is now a module. Putting it on GRUB's kernel line is no longer sufficient. Lesson number 2: If you NIC module...

  Bookmark and Share     1 Comment     RSS Feed     Email a friend

1