2010/1/13 Stefan Berger <stefanb@xxxxxxxxxx>: > > Daniel Veillard <veillard@xxxxxxxxxx> wrote on 01/13/2010 12:03:22 PM: > >> On Mon, Jan 11, 2010 at 12:55:27PM -0500, Stefan Berger wrote: >> > Hello! >> > > [...] [...] >> other case of limitiations could be found. Also this may not map well >> for other kind of hypervisors like VMWare, right ? > > I don't know much about the API that VMWare is exposing. Maybe only a > certain subset of what would be possible with this XML could be applied > to their API, if such functionality exist. Otherwise, if libvirt > can run ebtables and iptables commands on their management VM and > all traffic passes through VM=specific network interface (tap) in that VM, > it *should* work as well. VMware ESX hosts allow to configure the host level firewall via the remote VI API. But AFAIK there is no virtual machine level firewall. You're not supposed to do something like that in the service console, doing anything in the service console is not supported in general. Also there is no libvirtd in the service console because of that and because it is not necessary. The ESX driver does everything using the remote VI API. Matthias -- libvir-list mailing list libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list