[pve-devel] seperated virtual networks for KVM instances
Michael Rasmussen
mir at datanom.net
Thu Jan 24 16:56:00 CET 2013
On 01-24-2013 16:18, Stefan Priebe - Profihost AG wrote:
> Hello list,
>
> are there any plans or ideas how to establish easily virtual networks
> for VMs?
>
> Like building a DMZ with VMs?
>
I have an idea which I am currently refining.
1) Create a bridge with no assigned IP and call it DMZ1
2) Create a VM or CT with two nics. One assigned to a bridge with
access to the internet and one assigned to DMZ1
3) Install shorewall on this VM or CT acting as gateway for the DMZ1
bridge
4) Create a number of VM's or CT's with one nic assigned to DMZ1 using
the VM or CT with shorewall installed as gateway
5) Apply port forwarding rules to shorewall as needed
Voila a virtual DMZ:-)
--
Hilsen/regards
Michael Rasmussen
More information about the pve-devel
mailing list