So, I'm looking to set up a virtual router on my vlan enabled network. I've got the modem on vlan 5, the LAN on vlan 10, and a guest vlan on vlan 20. I'm sufficiently certain that, barring the addition of the necessary shorewall rules to accomidate a virtual router, my vm host is sufficiently secure for hosting the border router as a virtual machine.
My basic plan is to connect the VM host such that the single ethernet port is connected to a switched port with tagged vlans 5, 10, and 20, just exactly like the router is now, and creating two additional bridges, bridging vlans 5 and 20 exclusively to the router, and vlan 10 will remain connected as is (right now the vm host and all VMs are simply bridged / connected directly to vlan 10). the virtual router will of course contain an interface on the main lan (vlan10). Are there any major security implications, iptables, shorewall or Linux networking limitations, or any other issues I may have overlooked that you're aware of, either in practice or theory? I'm using ubuntu's kvm-qemu to run most of my machines, including the virtual router. ------------------------------------------------------------------------------ Write once. Port to many. Get the SDK and tools to simplify cross-platform app development. Create new or port existing apps to sell to consumers worldwide. Explore the Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join http://p.sf.net/sfu/intel-appdev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
