I was just going to ask the same thing. I didn't realize this was possible at all in the guest. Right now, I maintain the iptables rules on the host for all guests. I have guest admins send me a request via email if they need a new rule added, and then I add it to the host. The main problem is that opening a port because 1 guest needs it, opens that port for all guests and the host.
John On 2/15/07, Philippe Teuwen <[EMAIL PROTECTED]> wrote:
> iptables and routing remains on the host, but > can be proxied (i.e. done via policy daemon) Hi Herbert, Does such daemon exist already? Phil _______________________________________________ Vserver mailing list [email protected] http://list.linux-vserver.org/mailman/listinfo/vserver
_______________________________________________ Vserver mailing list [email protected] http://list.linux-vserver.org/mailman/listinfo/vserver
