xen-users

Re: [Xen-users] Live Migration Config

To:	xen-users@xxxxxxxxxxxxxxxxxxx
Subject:	Re: [Xen-users] Live Migration Config
From:	Mark Williamson <mark.williamson@xxxxxxxxxxxx>
Date:	Sat, 29 Oct 2005 13:38:14 +0100
Cc:	Staf Verhaegen <staf.verhaegen@xxxxxxxxx>
Delivery-date:	Sat, 29 Oct 2005 12:37:00 +0000
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to:	<1130531313.3132.10.camel@evod500>
List-help:	<mailto:xen-users-request@lists.xensource.com?subject=help>
List-id:	Xen user discussion <xen-users.lists.xensource.com>
List-post:	<mailto:xen-users@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References:	<E1EVZTb-0001r5-Rg@host-192-168-0-1-bcn-london> <1130531313.3132.10.camel@evod500>
Sender:	xen-users-bounces@xxxxxxxxxxxxxxxxxxx
User-agent:	KMail/1.8.3

> > Right now (and particularly with Xen 2.0, since it exports the management
> > interface over HTTP), the rule is basically not to have anything you
> > don't trust be able to access dom0 over the network.
>
> If this migration happens via http, you can probably firewall the port
> on your dom0 to only accept connections from certain ip adresses ?
> Or am I missing something ?

Yes, firewalling is also fine; of course you still have to trust that no 
machines on the same network are capable of IP address spoofing (or trust 
them not too).

Cheers,
Mark

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [Xen-users] Live Migration Config, (continued) Re: [Xen-users] Live Migration Config, Anthony Liguori Re: [Xen-users] Live Migration Config, Nivedita Singhvi Re: [Xen-users] Live Migration Config, Anthony Liguori [Xen-users] Re: Live Migration Config, Charles Duffy Re: [Xen-users] Live Migration Config, Alan Greenspan Re: [Xen-users] Live Migration Config, Anthony Liguori Re: [Xen-users] Live Migration Config, Mark Williamson [Xen-users] Re: Live Migration Config, Charles Duffy Re: [Xen-users] (securing dom0 - firewall rules. was: ) Re: Live Migration Config, Tom Brown Re: [Xen-users] Live Migration Config, Staf Verhaegen Re: [Xen-users] Live Migration Config, Mark Williamson <=

Previous by Date:	[Xen-users] Re: SSL TOE, Markus Schuster
Next by Date:	AW: [Xen-users] XEN Network Configuration Problem, Michael WALSER
Previous by Thread:	Re: [Xen-users] Live Migration Config, Staf Verhaegen
Next by Thread:	[Xen-users] creating a domU with a particular UUID with xen-unstable, Andrew D. Ball
Indexes:	[Date] [Thread] [Top] [All Lists]

xen.org, Legal and Privacy

This site is hosted by XenSource, a Citrix company