br...@biology.nmsu.edu (Brook Milligan) writes:
>The host tap0 interface has a MAC address of f2:0b:a4:70:18:82, and the = >guest vioif0 interface has a MAC address of 52:54:00:12:34:56. The = >latter is what shows up on the bridge; should they match? When I add = >mac=3Df2:0b:a4:70:18:82 to -device, the network still does not work. The tap MAC address isn't used in this case, it doesn't have to match. >I expected the guest to see traffic on its interface from the bridge (it = >should be passing all traffic, right?), but there is nothing, and I = >cannot ping even the host IP address. The bridge itself isn't connected to the host network. You need to add a host interface to it. Then the bridge will forward traffic between the tap interface and the host interface. You need an ethernet interface (adding a wlan interface doesn't work). You can also configure a vether interface and add that. This creates a more isolated guest network together with the host. This can then be routed to the host network (with or without NAT). >Also, the host has no route pointing to the tap0 interface. Should = >there be one? If so, how should it be created? Should there be an IP = >address on the host tap0 interface? Neither. An IP address on the tap interface was used in the past for the vether scenario above.
