Am 05.02.2013 23:00, schrieb Stefan G. Weichinger: > Am 29.01.2013 20:48, schrieb Stefan G. Weichinger: > >> Thanks for sharing ... I quickly followed your suggestions and built >> another service-file with your solution (you had typos btw -> "brigdge" >> ;-) ). It works as well and is maybe even slimmer in execution. >> >> I will just keep both versions around and see where it gets me. > > The *fun* is: I just now learned about macvtap-devices ... which seem to > enable me to get rid of that bridging at all ... afai understand it will > be enough to run network.service and libvirtd will do the rest > (correctly configured kernel given). > > testing now ...
hmmm ... yes and no: http://wiki.libvirt.org/page/Guest_can_reach_outside_network,_but_can't_reach_host_(macvtap) Yes, I was able to connect my VMs to a macvtap-device on my gentoo server host and this got them online vs. other networks (they could reach the internet etc). No, I wasn't able to ssh into them from the KVM-host itself ... which in my case is my main gentoo workstation where I run VMs within KVM for several purposes ... The workaround mentioned in the link above didn't work out so far for me, some more fiddling needed maybe. Got to think it over, but it seems way of an overhead to run an isolated network to contact VMs on my *local* machine just to be able to use macvtap :-P At least I learned about that new (to me ...) feature and the opportunity to use it with gentoo. Great. Really. In my case here it isn't about maximum performance ... I use KVM to test things and prepare VMs or installations to deploy somewhere else. For gentoo-based-KVM-servers it is a bit different: the need to contact the VM via the virtualization host isn't that important, if I am able to ssh/ping/whatever the VM from the outside, that is good enough. I have to deploy such a server in about two weeks. The good old bridging with TAP-devices etc. will be good enough. Especially as I replace another server still running VMware Server 2.x ... -> KVM with libvirt, on a recent gentoo-kernel should really improve things ... aside from networking details. --- sorry for dumping my thoughts in here. Stefan
