Re: [vserver] Virtual Host-Only Networking (tap?):
 vserver development mailing list 
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

Re: [vserver] Virtual Host-Only Networking (tap?)

From: Daniel Hokka Zakrisson <daniel_at_hozac.com>
Date: Sun 12 Sep 2010 - 00:18:21 BST
Message-ID: <40592.2001:16d8:ff15:101:223:14ff:fe14:2b90.1284247101.squirrel@intranet>

Gordan Bobic wrote:
> I'm trying to set up a host-only network/VLAN that is only available to
> the host and guests, wthout access further than that via the host. What
> I'm thinking about is setting up a tap device on the host, and giving
> each of the guests access to that interface.
>
> I couldn't find any documentation on this. Would it work? Is there a
> better way?

What interface the IP address is on doesn't at all matter. If you
firewall it to ensure that it cannot go outside of the host, or is
only allowed to talk on lo, you will have successfully contained it.
All host-local traffic uses lo anyway. 

-- 
Daniel Hokka Zakrisson
Received on Sun Sep 12 00:19:08 2010
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Sun 12 Sep 2010 - 00:19:08 BST by hypermail 2.1.8