On Wed, Dec 22, 2010 at 10:09:54AM +0100, PaweÅ KrzeÅniak wrote: > 2010/12/22 Eric Blake <eblake@xxxxxxxxxx>: > > On 12/21/2010 03:40 PM, PaweÅ KrzeÅniak wrote: > >> This patch adds possibility to run customized DNS/DHCP environment, by > >> spawning dnsmasq with alternative configuration file if such file exists. > >> This allows you to set any parameter described in dnsmasq(8). > >> Configuration file is expected to be located in file named > >> "<network_name>-dnsmasq.conf" in DNSMASQ_STATE_DIR directory. > >> If configuration file doesn't exists dnsmasq is spawned as before. > > > > You'll want to wait for danpb or DV to comment, but I'm thinking this > > might be rejected, and that instead, we should consider addressing the > > issue of what dnsmasq parameters you want to affect, and how we can > > encode that into the libvirt XML without having to rely on an external > > dnsmasq conf file. > > I want to create isolated environment for guests - they will be > connected to one bridge and will use private DNS data. No single > packet from this isolated network can reach external network - this > means no 53/udp traffic to resolvers defined in host's > /etc/resolv.conf. This sounds like a useful feature for libvirt to directly support, rather than requiring a hack in a external config file. eg, Some XML element to indicate whether to enable DNS proxying or not. Regards, Daniel -- libvir-list mailing list libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list