on the versatility of network-bridge

By
chris t
on August 17, 2008 10:59 PM | | Comments (0)
Network-bridge, the default Xen network backend, doesn't care what sort of data it's sending -- as far as it's concerned, they're Ethernet frames.  There's a special case for IPv4 and the antispoof rules, but that's it.  Other protocols, like IPv6, will "just work," and there's no current provision for Xen to inspect packets.  (Although it wouldn't be that hard to add, building on the IPv4 support.)

And if you want to spoof your Banyan VINES address, Xen will not stop you, or indeed even notice.

Categories:

Tags:

Leave a comment

Search

About this Entry

This page contains a single entry by chris t published on August 17, 2008 10:59 PM.

tell me about pv_ops. was the previous entry in this blog.

still not really into pokemon. is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.