HomeVirtualizationXENDomains

IPfire DomU (Firewall)

Mon, 12/12/2011 - 17:19 — panticz 
URL=http://downloads.ipfire.org/releases/ipfire-2.x/2.11-core57/ipfire-2.11.xen.i586-full-core57.tar.bz2
 
# get ipfire xen image
wget ${URL} -P /tmp/
 
# extract
tar xjf /tmp/ipfire-2.11.xen.i586-full-core*.tar.bz2 -C /tmp/
 
# copy data to lv
mkdir /tmp/ipfire/mnt/
 
# copy boot filesystem
lvcreate --name fw-boot --size 256M vg1
mkfs.ext2 /dev/vg1/fw-boot
mount /tmp/ipfire/ipfire-boot.img /tmp/ipfire/mnt/ -o loop
mount /dev/vg1/fw-boot /mnt/
cp -a  /tmp/ipfire/mnt/* /mnt/
umount /tmp/ipfire/mnt/
umount /mnt/
 
# copy root filesystem
lvcreate --name fw-root --size 2G vg1
mkfs.ext3 /dev/vg1/fw-root
mount /tmp/ipfire/ipfire-root.img /tmp/ipfire/mnt/ -o loop
mount /dev/vg1/fw-root /mnt/
cp -a  /tmp/ipfire/mnt/* /mnt/
umount /tmp/ipfire/mnt/
umount /mnt/
 
# copy var filesystem
lvcreate --name fw-var --size 2G vg1
mkfs.ext3 /dev/vg1/fw-var
mount /tmp/ipfire/ipfire-var.img /tmp/ipfire/mnt/ -o loop
mount /dev/vg1/fw-var /mnt/
cp -a  /tmp/ipfire/mnt/* /mnt/
umount /tmp/ipfire/mnt/
umount /mnt/
 
# create swap
lvcreate --name fw-swap --size 1G vg1
mkswap /dev/vg1/fw-swap
 
 
# clean up
rm -r /tmp/ipfire*
 
# create xen config file
cat <<EOF> /etc/xen/fw
bootloader = '/usr/lib/xen-default/bin/pygrub'
memory = 512 
name = "fw"
acpi = 1
apic = 1
vif = [ 'mac=00:17:3e:be:a1:aa' ]
disk = [
    'phy:/dev/vg1/fw-boot,xvda1,w',
    'phy:/dev/vg1/fw-swap,xvda2,w',
    'phy:/dev/vg1/fw-root,xvda3,w',
    'phy:/dev/vg1/fw-var,xvda4,w'
]
pci = ['00:09.0']
extra = 'iommu=soft'
EOF
 
# OPTIONAL: autostart
ln -s /etc/xen/fw /etc/xen/auto/01_fw
 
# start domU
xm create -c fw
 
# configure ipfire in terminal
 
# webinterface
https://YOUR_DOMU_IP:444
 
# Links
http://wiki.ipfire.org/de/addons/virtualisation/howto/debian_als_dom0_xen#xen_und_kernel_installieren
http://wiki.ipfire.org/de/addons/virtualisation/howto/debian_xen_4.x

Do you like this page? Then support it. Please click the AD below and visit the sponsor. Thank you!