This is an old revision of the document!
IPFire as Xen (4.1) DomU
Introduction
The following procedure is inspired by this article on the IPFire Wiki, as well as this article on the Panticz web site.
The directories locations that are used in this example are based on this wiki's Sample Configuration, but YMMV.
You should also read the README file, inside the ipfire/ directory that's extracted from the archive.
In case you didn't do so already, it is also recommended that you get at least the base concepts that IPFire relies on by ready through their website, you should, at the minimum, grasp the "colored" concept of the IPFire firewalling.
Also read this IPFire article to understand why it's recommended to install IPFire as a HVM.
Network
Setting up a firewall implies having at least 2 physical NICs on the host machine.
Using the scon Image of IPFire
Get the IPFire image
Getting to the IPFire download page didn't provide us the link to the latest “scon” release… Let's have a look at the IPFire torrent tracker: BINGO ! we have a torrent for ipfire-2.17.1gb-ext4-scon.i586-full-core87.img.gz
Now use your favorite torrent app to download to the compressed image to your workstation, and transfer the image on your Xen Host.
> cd /directory/of/image/dowload/ > sftp root@<your_xen_host_ip> sftp> cd /opt/xen/X-Local-ISO sftp> put ipfire-2.17.1gb-ext4-scon.i586-full-core87.img.gz
Create the IPFire VHD (vdi)
We're willing to use file based VHDs here, so let's create one to be allocated to our IPFire VM.
First identifying our SR of choice, then create the file based VHD (VDI).
> xe sr-list
...
uuid ( RO) : 26b9d87b-f344-1c8d-c5c5-a155d4e4e2e0
name-label ( RW): X-Local-SR
name-description ( RW):
host ( RO): store
type ( RO): ext
content-type ( RO):
...
> xe vdi-create sr-uuid=26b9d87b-f344-1c8d-c5c5-a155d4e4e2e0 name-label=IPFire type=user virtual-size=5GiB
72e00fc6-98bb-48fe-ab4d-b52d1ef721b5
