| Anchor | ||||
|---|---|---|---|---|
|
| Include Page | ||||
|---|---|---|---|---|
| ||||
| Anchor | ||||
|
Table of Contents
| Table of Contents | ||
|---|---|---|
|
...
| Include Page | KBP:Conventions | KBP:Conventions |
|---|
General description
It is strongly recommended to use only physical network adapters for CHARON-VAX networking to gain maximum performance. In situations where the host has only one network adapter, you can use the LINUX virtual network Interfaces ("TUN/TAP") and map individual CHARON-VAX instances to their own virtual interfaces.
...
Using "ncu" utility to establish CHARON virtual network
Login a root. Start "ncu" utility:
...
Manual configuration of CHARON virtual network
...
Preparation of the host to create the virtual network
- Login as "root" user.
Configure the physical network interface to run in promiscuous mode using the following command. This interface will be dedicated to the whole network bridge (created later).
# ifconfig eth<N> 0.0.0.0 promisc upPromiscuous mode allows the physical (or virtual) network interface to accept the entire volume of incoming packets. This mode is essential for consistency of the information transfer.
In case the firewall is enabled on the host system, the following command should be executed to allow the bridge to forward IP packets:
# /sbin/iptable -I FORWARD -m physdev --physdev-is-bridged -j ACCEPTThis command can also be performed from the bridge configuration script. It has to be executed each time the iptables service is (re)started.
It is also possible to make this setting system-wide. Either:
Issue the given command from the firewall control panel.
Add the following line to the end of the "/etc/sysconfig/iptables
"file:-I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
...