i'm having a look at UML for jailing a daemon.
The networking part is not clear to me. What i would want
is this: (eth0 connects to the inet, eth1 connects to the lan)
* all incoming traffic on eth0 should also be seen by the UML's
For instance, if i would have an incoming ssh connection,
the UML containing the sshd daemon should handle the connection
So this UML would also need access to the net
All outgoing traffic for the net should also go on eth0
* all traffic for the other UML's or the LAN should go via eth1
Now i read the networking part of UML and other tutorials but still
it's not completely clear to me how i can accomplish this.
One sollution talks about tun/tap devices. If i understand correctly
i would have to make 2 tap devices for every UML alongside a bridge.
But i don't really understand why i need to specify an ip in the UML
also. Is this because otherwise i won't have any networking at all?
To be honest, i don't like the idea of creating a bridge and 2 tap
devices for every UML AND specifying one inside each UML.
I saw that one could also use uml_switch to accomplish this.
Any other easier way one can set up networking from the UML?