Hi for all ..
Just now I am implementing a similar setup, but with diferent aproach .
My host system is bridged, but with no valid IP, just a class C to be
managed within internal network .
Then all my guests have theyer own public IP AND a Class C IP, and all run
theyer own shorewall, with especific configuration .
I beleave this is more secure, what do you thing Mr. Eastep ?
Fábio Rabelo
2009/3/6 Tom Eastep <[email protected]>
> Tom Eastep wrote:
> > Michael Kress wrote:
> >
> >> So my question is, what am I doing wrong?
> >
> > Nothing -- There is no way currently to apply blacklisting to a bridge
> port.
>
> But then, there is absolutely no reason that you must use a bridge with
> KVM. I use a routed configuration (http://www.shorewall.net/KVM.html)
> and, with proxy arp, it can do everything that your bridge is doing;
> plus, all of the interface options are available.
>
> -Tom
> --
> Tom Eastep \ When I die, I want to go like my Grandfather who
> Shoreline, \ died peacefully in his sleep. Not screaming like
> Washington, USA \ all of the passengers in his car
> http://shorewall.net \________________________________________________
>
>
>
> ------------------------------------------------------------------------------
> Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco,
> CA
> -OSBC tackles the biggest issue in open source: Open Sourcing the
> Enterprise
> -Strategies to boost innovation and cut costs with open source
> participation
> -Receive a $600 discount off the registration fee with the source code:
> SFAD
> http://p.sf.net/sfu/XcvMzF8H
> _______________________________________________
> Shorewall-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>
>
------------------------------------------------------------------------------
Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA
-OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise
-Strategies to boost innovation and cut costs with open source participation
-Receive a $600 discount off the registration fee with the source code: SFAD
http://p.sf.net/sfu/XcvMzF8H
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
