Hello,
I am looking for a standard network config that can be used for running
multiple containers in the same physical host. There could be 100s of
containers running in a single host.
What I am not clear is, what IP and ethernet address should I use while
invoking the container.
Should I just create a bridge device with a local IP (say 192.168.254.1)
and add this as the default gateway for all the containers.
For access to external network, would a single NAT rule like this suffice?
iptables -t nat -A POSTROUTING -s 192.168.254.0/24 -o eth0 -j MASQUERADE
Also the containers should have limited network access. They should be able
to
1. connect to a limited set of outside hosts in the intranet
2. connect only to a few well known ports (say 80/443) in the internet.
Thanks,
Arun
------------------------------------------------------------------------------
Better than sec? Nothing is better than sec when it comes to
monitoring Big Data applications. Try Boundary one-second
resolution app monitoring today. Free.
http://p.sf.net/sfu/Boundary-dev2dev
_______________________________________________
Lxc-users mailing list
Lxc-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lxc-users
