Hello,
I have recently discovered vmware server and installed it on a centos server.
Having already setup xen & shorewall following a very clear howto, I
hoped to find an equivalent solution but in fact, I have found very
little helpful information.
I'd like to install shorewall on the main host
I don't think you can do this, but it's not a limitation of Shorewall.
Each VM is its own machine and installing Shorewall on the host OS only
allows Shorewall to affect the host OS. It's akin to installing
Shorewall on some other machine on the network and expecting it to be
able to protect a
On Mon, Mar 05, 2007 at 09:09:52AM -0700, Jon wrote:
> In fact, I'm pretty sure that
> the host NIC doesn't technically need an IP at all, but I had to give it
> one in order to bring it up.
An invalid address will suffice. If you use one of the guaranteed
martians (like 0.0.0.0) then the kernel
On Mon, Mar 05, 2007 at 09:09:52AM -0700, Jon wrote:
> I don't think you can do this, but it's not a limitation of
> Shorewall. Each VM is its own machine and installing Shorewall on
> the host OS only allows Shorewall to affect the host OS. It's akin
> to installing Shorewall on some other mach
[EMAIL PROTECTED] wrote:
Could you not define those in Shorewall and then set your firewall rules up
the way you want?
I'm pretty sure this can be done if you're NATting. It's the bridging
that's probably not going to work in this case.
J
begin:vcard
fn:Jon Watson
n:Watson;Jon
email;intern
Jon wrote:
> [EMAIL PROTECTED] wrote:
>> Could you not define those in Shorewall and then set your firewall
>> rules up the way you want?
>
> I'm pretty sure this can be done if you're NATting. It's the bridging
> that's probably not going to work in this case.
As you've pointed out, with VMWare
Thank you very much for all these aswers. I'll try to protect these
virtual hosts in another way.
Regards,
--
Mikael Kermorgant
-
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and y
On 3/6/07, Mikael Kermorgant <[EMAIL PROTECTED]> wrote:
> Thank you very much for all these aswers. I'll try to protect these
> virtual hosts in another way.
The best way to do it is to setup the VM interface in 'host-only'
mode. This basically forwards all traffic from the VM onto one of the
vmne
