[pox-dev] NAT with openflow

Shabbir Ahmed shabbir1282 at gmail.com
Mon May 20 00:49:06 PDT 2013 

thanks alot, yes at the point this config doesnt make sense but im
preparing it for a test bed to test IDP to be applied thorugh OpenFlow.

thank you,
Shabbir.


On Mon, May 20, 2013 at 12:39 PM, Murphy McCauley <murphy.mccauley at gmail.com
> wrote:

> I can only speak generally -- I don't have any experience with Pantou
> itself.  I should have probably specified that up front!  Your
> configuration isn't making a whole lot of sense to me, but this also
> doesn't seem to have much to do with POX at this point.  You'll probably
> get better support from the openflow-discuss mailing list where more
> readers are familiar with Pantou.
>
> Good luck!
>
> -- Murphy
>
>
> On May 20, 2013, at 12:20 AM, Shabbir Ahmed wrote:
>
> im following pantuo, and has configred every lan port to saperate vlan and
> assigned a saperate subnet and use the vlan ip as default gw to computer on
> that port. do i hv to change any thing in that ? canu share ur configs ? or
> do i have to change the port type to bridge and then configure veth.
>
> thanks,
>
>
>
> On Mon, May 20, 2013 at 12:16 PM, Murphy McCauley <
> murphy.mccauley at gmail.com> wrote:
>
>> Most recently, I have done this by creating a veth pair where one end is
>> on the OpenFlow datapath.  The other end, therefore, is just like a port to
>> another computer on a LAN; you can do normal Linux IP forwarding between it
>> and your WAN interface, complete with iptables-based NAT.  And if you, for
>> example, run dnsmasq bound to that interface, you can get DNS/DHCP on ports
>> connected to the datapath.
>>
>> -- Murphy
>>
>> On May 19, 2013, at 11:37 PM, Shabbir Ahmed wrote:
>>
>> thanks,
>>
>> I have a tp-link router, I want to add all lan-ports to Datapath and want
>> to use WAN port as controller port(that connects to controller) and use it
>> as wan/nat port for internet browsing for the users connected to WIFI and
>> LAN ports.
>>
>> i dont want DHCP and NAT be running through Openflow, daemons like
>> dnsmasq should let me achieve that and iptables, openflow is only used for
>> allowing and blocking or playing with lan traffic.
>>
>> thanks,
>> Shabbir.
>>
>>
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.noxrepo.org/pipermail/pox-dev-noxrepo.org/attachments/20130520/0293179e/attachment-0001.htm>

More information about the pox-dev mailing list