Networking problem with firewall and KVM

Lorenzo Milesi maxxer at ufficyo.com
Thu Dec 13 15:50:38 UTC 2012


> So I guess your guest works because its tap0, bridged into br1,
> gets an address from the WAN's dhcp server.  br1 itself doesn't
> get an address nor does eth2, so host can't directly access the
> WAN.

br1 doesn't need an ip address, because the default gw for the phy host is 192.168.1.1, the firewall LAN interface.
Once the packet reaches 192.168.1.1 is routed by the firewall to the WAN interface of the guest, which is then physical br1.


-- 
Lorenzo Milesi - lorenzo.milesi at yetopen.it

GPG/PGP Key-Id: 0xE704E230 - http://keyserver.linux.it






More information about the ubuntu-server mailing list