Re: [Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
On Tue, May 09, 2006 at 12:15:01PM +0200, Sébastien CRAMATTE wrote: Herbert Poetzl a écrit : On Sat, May 06, 2006 at 08:27:10AM +0200, Peter Mann wrote: On Fri, May 05, 2006 at 10:22:13PM +0200, Sébastien CRAMATTE wrote: What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. you can simply use the 'network' connection between them, as it will not leave the host system (it will go over the loopback lo interface, and cannot be sniffed by other guests, given that you use a secure setup which is default) But each VPS by default doesn't have lo interface ? your VPS doesn't _show_ an lo interface (yet), but the host for sure _has_ one, otherwise most things would fail in your networking What do you mean ? addresses assigned to the host (this includes all guest IPs) will be known as _local_ addresses and traffic to those addresses will _always_ go via the loopback device My VPS have each one a PUBLIC IP so ? Could you explain me a little bite more ? so all the public IPs will be known as local addresses to the host (and therefore to the other guests too) so traffic between the guests (or host and guest) via those public ips will not leave the host (i.e. happen on the loopback device) HTH, Herbert vserver technology for a minute) and use SSL connection - ldaps:// or stunnel4 the best way is IMHO using SSL connection independent on vserver technology ... that will do also, of course trading performance for flexibility when you move the guests apart ... I'm looking closer about this but I prefer the first solution HTH, Herbert -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
Herbert Poetzl a écrit : On Sat, May 06, 2006 at 08:27:10AM +0200, Peter Mann wrote: On Fri, May 05, 2006 at 10:22:13PM +0200, Sébastien CRAMATTE wrote: What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. you can simply use the 'network' connection between them, as it will not leave the host system (it will go over the loopback lo interface, and cannot be sniffed by other guests, given that you use a secure setup which is default) But each VPS by default doesn't have lo interface ? What do you mean ? My VPS have each one a PUBLIC IP so ? Could you explain me a little bite more ? vserver technology for a minute) and use SSL connection - ldaps:// or stunnel4 the best way is IMHO using SSL connection independent on vserver technology ... that will do also, of course trading performance for flexibility when you move the guests apart ... I'm looking closer about this but I prefer the first solution HTH, Herbert -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
On Sat, May 06, 2006 at 08:27:10AM +0200, Peter Mann wrote: On Fri, May 05, 2006 at 10:22:13PM +0200, Sébastien CRAMATTE wrote: What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. you can simply use the 'network' connection between them, as it will not leave the host system (it will go over the loopback lo interface, and cannot be sniffed by other guests, given that you use a secure setup which is default) use your ldap and postfix like any other network servers (forget vserver technology for a minute) and use SSL connection - ldaps:// or stunnel4 the best way is IMHO using SSL connection independent on vserver technology ... that will do also, of course trading performance for flexibility when you move the guests apart ... HTH, Herbert -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
On Fri, May 05, 2006 at 10:22:13PM +0200, Sébastien CRAMATTE wrote: What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. use your ldap and postfix like any other network servers (forget vserver technology for a minute) and use SSL connection - ldaps:// or stunnel4 the best way is IMHO using SSL connection independent on vserver technology ... -- 5o Peter.Mann at tuke.sk ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] What is the best way to connect from 1 vserver to other vserver within the same host ?
Hello What is the best way to connect from 1 vserver to other vserver within the same host ? I've got an Ldap directory inside one vserver and a postfix that use ldap in another vserver. I search the best way to connect to the ldap server with the maximum of security. The postfix server is a public mail server. The ldap directory is private. A private IP on the postfix server seems to be the easier but ... maybe it exists a clever solution ? Thanks for your advices and solutions Sebastien ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
