Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Xen: Users
Firewall in domU, networking in XEN
 

Index | Next | Previous | View Flat


slawek.k_xl at wp

Apr 30, 2012, 2:00 AM


Views: 2784
Permalink
Firewall in domU, networking in XEN

Hi all,

I want to run XEN on a dedicated server with following structure:
dom0 as hypervisor.
domU1 as a gateway - firewall, DNS, openVPN and maybe DHCP server. Firewalling via Shorewall.
domU2 as internal server with several services (Apache, MySQL available locally)
domU3 as DMZ with external Apache server that can be queried from external.

users from the outside should connect to OpenVPN at domU1 and have an access to the services on domU2.
Apache on domU3 will connect to MySQL at domU2 and present the data to the client. That should ensure better security in case when domU3 is exposed.
domU1 should ensure firewalling the system, port forwarding 80 to domU3 and creating a NAT.
The physical machine will have one NIC with one public IP.

My question, as a XEN beginner: is this config quite feasible ?
What should be improved ?
Should I use bridged or routed mode in XEN ?
I know that I have to enable NIC at domU1 by adding pci and netif=1 parameters to the config.
I also found this link:http://www.shorewall.net/3.0/XenMyWay.html
In my case I have only one public IP and I don't have wifi zone.
I don't want to assign public IP to the domU2, just forward the port.
Will assigning the public IP in domU2 improve scalability if we want to add more public-available services ?
Any recommended tutorials, howtos ?

Thanks
Slawek Kosowski




_______________________________________________
Xen-users mailing list
Xen-users [at] lists
http://lists.xen.org/xen-users

Subject User Time
Firewall in domU, networking in XEN slawek.k_xl at wp Apr 30, 2012, 2:00 AM
    Re: Firewall in domU, networking in XEN ditwal001 at gmail Apr 30, 2012, 2:28 AM
        Re: Firewall in domU, networking in XEN slawek.k_xl at wp Apr 30, 2012, 3:58 AM
            Re: Firewall in domU, networking in XEN linux at thehobsons Apr 30, 2012, 5:08 AM
            Re: Firewall in domU, networking in XEN ditwal001 at gmail Apr 30, 2012, 7:19 AM
            Re: Firewall in domU, networking in XEN linux at thehobsons Apr 30, 2012, 7:38 AM
    Re: Firewall in domU, networking in XEN linux at thehobsons Apr 30, 2012, 2:51 AM
    Re: Firewall in domU, networking in XEN alk at ondore Apr 30, 2012, 10:22 AM
    Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 3, 2012, 1:50 AM
        Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 7, 2012, 1:09 AM
            Re: Firewall in domU, networking in XEN list at fajar May 7, 2012, 1:18 AM
            Re: Firewall in domU, networking in XEN linux at thehobsons May 7, 2012, 7:58 AM
                Re: Firewall in domU, networking in XEN cdelorme at gmail May 7, 2012, 10:57 AM
            Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 10, 2012, 1:44 AM
                Re: Firewall in domU, networking in XEN linux at thehobsons May 10, 2012, 2:15 AM
                Re: Firewall in domU, networking in XEN Ian.Campbell at citrix May 10, 2012, 6:01 AM
    Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 14, 2012, 1:04 AM
        Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 23, 2012, 3:56 AM
            Re: Firewall in domU, networking in XEN linux at thehobsons May 23, 2012, 12:22 PM
    Re: Firewall in domU, networking in XEN slawek.k_xl at wp May 24, 2012, 1:05 AM

  Index | Next | Previous | View Flat
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.