OpenVZ Forum


Home » Mailing lists » Users » several nics on the hn
Re: several nics on the hn [message #43703 is a reply to message #43697] Fri, 07 October 2011 10:48 Go to previous messageGo to previous message
Daniel Bauer is currently offline  Daniel Bauer
Messages: 37
Registered: February 2006
Member
Hi Esmé,

From: "Esmé de Wolf" <esme@elements.nl>
> When you want to use this kind of configuration:
>
> ---internal---> | hn | VEID 1
> ---NIC 2----> | | VEID 2
> ---NIC 3----> | | VEID 3
>
> And what you try is, f.e., to have the internal NIC only connecting to
> the
> hn, and NIC 2 to VEID 3 and NIC 3 to VEID 2, then you probably will
> need to
> route and firewall your config if you stick to venet.
>
> Using a bridged setup would mean the same security implications as
> using the
> setup above (firewalled). So that's not something to worry about.

I think I do it with veth, also if I prefered the venet interface,
because nobody could change the IP inside the CT.

Thanks
Daniel


> -----Oorspronkelijk bericht-----
> Van: users-bounces@openvz.org [mailto:users-bounces@openvz.org] Namens
> Daniel Bauer
> Verzonden: donderdag 6 oktober 2011 22:14
> Aan: users@openvz.org
> Onderwerp: Re: [Users] several nics on the hn
>
> Hi Esmé,
>
>> What's your setup? You have 1 'internal' NIC with an IP-address and
>> other NIC's without IP-address who you want to connect inside a
>> container, for what purpose?
>
> I've several nets:
> 1. internal service net, only available from/for the hostnode 2.
> internal
> LAN with intranet services for my users 3. DMZ 4. external IPs
>
> The host node should only be accessible in net 1, I don't want any
> routing
> or firewalling inside the hn, there should be no connection f.e.
> to net 4
>
>
>> If you use veth you could theoretically set up a bridge with one of
>> those
>> devices, that would be easiest in my opinion. But why would you
>> consist on
>> venet?
>
> In the mentioned article the are two advantages: security and
> performance
>
>
>> Probably with a little bit more information we can help you a bit
>> further.
>
>
> Thanks
> Daniel
>
>
>> -----Oorspronkelijk bericht-----
>> Van: users-bounces@openvz.org [mailto:users-bounces@openvz.org]
>> Namens
>> Daniel Bauer
>> Verzonden: donderdag 6 oktober 2011 15:02
>> Aan: users@openvz.org
>> Onderwerp: [Users] several nics on the hn
>>
>> Hello,
>>
>> I've several nics on the hostnode. Only the internal service nic have
>> an
>> internal IP. The other nics are without IPs and connected to
>> different
>> internal subnets and public www.
>>
>> I've read the differences between venet and veth
>> http://wiki.openvz.org/Differences_between_venet_and_veth
>> and want to use venet, but only venet0 is active in the hn, I think
>> this is
>> connected to eth0, but how to access the other nics?
>>
>> Thanks
>> Daniel
>>

Report message to a moderator

[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: unsubscribe
Next Topic: Optimizing resources from /proc/user_beancounters
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Thu Aug 07 02:44:27 GMT 2025

Total time taken to generate the page: 1.24526 seconds
Powered by FUDforum Powered by Virtuozzo Containers