Re: networking with virtual machine

To: debian-user@lists.debian.org
Subject: Re: networking with virtual machine
From: Neal Murphy <neal.p.murphy@alum.wpi.edu>
Date: Wed, 19 Sep 2012 10:45:04 -0400
Message-id: <[🔎] 201209191045.04927.neal.p.murphy@alum.wpi.edu>
Reply-to: neal.p.murphy@alum.wpi.edu
In-reply-to: <[🔎] 87y5k7ouuk.fsf@yun.yagibdah.de>
References: <[🔎] 87392lr7dj.fsf@yun.yagibdah.de> <[🔎] 201209181613.38416.neal.p.murphy@alum.wpi.edu> <[🔎] 87y5k7ouuk.fsf@yun.yagibdah.de>

On Tuesday, September 18, 2012 05:59:47 PM lee wrote:
> Neal Murphy <neal.p.murphy@alum.wpi.edu> writes:
> > So yes, if you want 'real' networking, you'll need bridges and taps.
> 
> Thank you, I'll have to look into taps then.
> 
> Do you think it's a good idea to just create a bridge device with the
> unused eth0 for this?  I could leave eth1 as is and would basically only
> have to add a zone and appropriate policy and rules in the shorewall
> configuration.

If that is the only firewall method you have then yes, enable forwarding, add 
the bridge to a second shorewall zone, and add iptables rules that drop, 
reject, allow and deny traffic as you desire. All of your VMs can easily be 
tapped into the bridge.

Reply to:

Follow-Ups:
- Re: networking with virtual machine
  - From: lee <lee@yun.yagibdah.de>

References:
- networking with virtual machine
  - From: lee <lee@yun.yagibdah.de>
- Re: networking with virtual machine
  - From: Neal Murphy <neal.p.murphy@alum.wpi.edu>
- Re: networking with virtual machine
  - From: lee <lee@yun.yagibdah.de>

Prev by Date: Re: Installation
Next by Date: Re: Disable X-Server temporary
Previous by thread: Re: networking with virtual machine
Next by thread: Re: networking with virtual machine
Index(es):
- Date
- Thread