On Sunday 08 November 2009 08:27:41 Avi Kivity wrote:
> On 11/08/2009 12:11 AM, Anthony Liguori wrote:
> >
> >> You don't need root privileges to use a tap device.
> >
> > You can access a preconfigured tap device but you cannot allocate a
> > tap device and connect it to a bridge without CAP_NET_ADMIN.
>
> btw, shouldn't we, in the general case, create a bridge per user and use
> IP NAT? If we have a global bridge, users can spoof each other's MAC
> addresses and interfere with their virtual machines. They can also
> interfere with the real network.
>
> That's not a concern with most one-user-per-machine configurations, but
> the default configuration should be safe.
It also depends a lot on what you want to do with the virtual machine.
If you want to run a game or a legacy application in a different operating
system on your desktop, a NATed bridge is ideal, but it does not work
on a server if the guest wants to listen on a socket with its own IP address.
Arnd <><
