----- "Simon Hobson" <[EMAIL PROTECTED]> wrote: > [EMAIL PROTECTED] wrote: > > >So in short, there is no way for me to have several DomUs share a > >single public IP. > > Yes and No ! Yes, they can all share a single connection through NAT, > > no, they can't all offer the same sevices. > > You need a simple "two interface router with NAT", which can either > be an external box (ie router appliance), or you can run it in a DomU > > with something like Shorewall. You need to forward certain types of > traffic to internal machines that are going to handle it - eg DNAT > inbound connections to port 80 to your web server, DNAT inbound > connections to port 25 to your mail server, and so on. > > Shorewall doesn't care if the two interface machine is a standalone > computer running only the firewall, or a virtual machine running > under Xen. DomU's are fairly simple in terms of their networking - > it's just Dom0+NAT+firewalling that you need to steer clear of. >
Thank you so much for your help and clarification on all of this. I talked to my provider and I will try and get a couple of extra public IPs and use Xen as a bridged network. This way, I'll just install a simple shorewall on each Dom. I will however have a look at other solutions unless Xen fix this problem. Thanks again! -- eco ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
