Hi Romer,
I use VMWare, but I would bet that Xen has a similar feature set. For my case, there were two ways to deal with the VLAN traffic: Option 1: Have your hypervisor deal with the VLAN traffic - Set up one virtual switch for each interface, and configure that virtual switch to accept the desired traffic. - In your case, you would have 7 Virtual switches and 7 Virtual network adapters on your PF Virtual Machine. This allows the hypervisor (in my case VMWare, in your case Xen) to deal with all the VLAN tags so the operating system hosted on your VM doesn't have to worry about it. Option 2: Have your VM Operating System deal with the VLAN traffic (This is the way I chose.) - Set up a single VLAN switch on VLAN 4096 (the equivalent of a broadcast address. This will forward all VLAN traffic - VLAN tags included - to an attached virtual interface). - Configure your OS to deal with the VM traffic. For my PacketFence box, this meant creating VLAN interfaces. In Centos, this means calling the interface by the naming convention ethx.y where X = the interface number and Y=the VLAN you want to receive. - In my case, I have eth0.1, eth0.10, eth0.20, eth0.30 With either of those two options, you can decide how to divvy up physical network interfaces to fill your bandwidth and redundancy needs. From: Romer Ventura [mailto:[email protected]] Sent: Monday, July 16, 2012 11:03 AM To: [email protected] Subject: [PacketFence-users] Noob questions - PF and XenServer Hello, I am interested on implementing PF 3.4 in my environment and I have a question I cant seem to find the answer to in the docs. First, let me give an overview of my environment: - VLAN1 (default vlan): has all the legacy stuff and printers. - VLAN10 is for employees of type 1 - VLAN20 is for employees of type 2 - VLAN30 is for employees of type 3 - VLAN40 is for guest - VLAN50 is for all virtual servers - VLAN100 if for all physical servers and routers I would be running PF in a VM under XenServer. I use Debian and PF 3.4 has already been installed. My main question is: Do I need a Network Interface for each of my VLANs or can I just have 1 interface and do everything from there.? I also have 2 DHCP and 2 DNS servers running in Windows server 2008 and would like to stick with them to handle the DHCP replies and DNS records, Does PF only uses its DHCP and DNS for the guest assignment or does it use it for ALL clients? Thanks. DoubleCheck identified this as CLEAN. Give feedback: <http://dcem.cccp.com/ms?k=AIPKD0RQGJN-> This is SPAM . <http://dcem.cccp.com/md?k=AIPKD0RQGJN-> More
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
