Hi all,We're using since a long time libvirt with KVM guest machines and linux bridges. Firewall rules based on iptables and defined on the host server control inbound/outbound traffic to/from each VM. In order to improve remote administration facility and get extra services, it makes sense for us to replace linux bridges with Open vSwitch. However, the side effect is the solution's inability to filter VM traffic since it's impossible to set-up iptables rules with ovs bridges. OpenStack/Quantum circumvents this problem (no talking about performance) by setting an extra linux bridge and veth pair between the guest TAP and ovs.
Is there {a simple|an alternative} solution to achieve it without installing the OpenStack/Quantum layer ?
Thanks, Regards, -- Université de Nantes - Direction des Systèmes d'Information IM jabber: yoann.juet@xxxxxxxxxxxxxx
begin:vcard fn:Yoann Juet n:Juet;Yoann org;quoted-printable;quoted-printable:Direction des Syst=C3=A8mes d'Information;P=C3=B4le R=C3=A9seau adr;quoted-printable:BP 92208;;2 rue de la Houssini=C3=A8re;Nantes Cedex 3;;44322;France email;internet:yoann.juet@xxxxxxxxxxxxxx tel;work:02.53.48.49.26 tel;fax:02.53.48.49.09 tel;cell:06.73.15.42.19 version:2.1 end:vcard
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ libvirt-users mailing list libvirt-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvirt-users
