Re: filter network traffic of KVM guests.

To: debian-user@lists.debian.org
Subject: Re: filter network traffic of KVM guests.
From: Richard Hector <richard@walnut.gen.nz>
Date: Fri, 18 May 2018 10:47:11 +1200
Message-id: <[🔎] 5699e46d-e5b3-7947-3f55-d4d0f074e3b5@walnut.gen.nz>
In-reply-to: <[🔎] 20180517201149.axzfv4gj6rgg67nf@p5k.home>
References: <[🔎] 20180517201106.68863e28@cd> <[🔎] 20180517201149.axzfv4gj6rgg67nf@p5k.home>

On 18/05/18 08:11, Reco wrote:
>> I read it's deprecated to use iptables on a linux bridge. [1]
> Yup, you should not.
Interesting, I wasn't aware of that.

Does that just apply to running iptables on the host?

Or should I also not run it in the vm (eg on a rented VPS, where I
assume the net device is backed by a bridge)?

Presumably if it causes a security hole, I shouldn't be _able_ to run it
in the VM?

Richard

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

Follow-Ups:
- Re: filter network traffic of KVM guests.
  - From: Reco <recoverym4n@gmail.com>

References:
- filter network traffic of KVM guests.
  - From: Chris <chris2014@postbox.xyz>
- Re: filter network traffic of KVM guests.
  - From: Reco <recoverym4n@gmail.com>

Prev by Date: Re: USB Install Fails, Complains about CD-ROM
Next by Date: making more room in root partition for distribution upgrade
Previous by thread: Re: filter network traffic of KVM guests.
Next by thread: Re: filter network traffic of KVM guests.
Index(es):
- Date
- Thread