On Tue January 10 2006 15:15, Stephan Mueller wrote: > Hi, > > on the hosting page in the wiki the provider [vRoutix], Argentina > anounces iptables support inside a vserver client while i read on the > beginners faq page that the forward chain is not touched by packets > between the clients. > > Which one is true? :) Do they use some sort of tap or tun devices? > Probably both are true.
Reading step three of the virtual tour does not say that the ip rules are 'within' your virtual server. Only that the rules that apply to your virtual server can be controlled by a web interface (on the host system) most likely. That would be fairly straight forward thing to do, just write rule chain(s) for a particular IP address. Constrain the web update to do dynamic rules on the rule chain for a particular customer. For instance, start with the dynamic rule handling of PSAD, be creative with the chain naming, add a web interface, etc. Mike _______________________________________________ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
