Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 0 replies
  • Subscribers 2 subscribers
  • Views 463 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Disable KVM host direct access to virtual network?

ErikFranzen
Using a KVM based UTM-install. The KVM host has IP-access to all my virtual networks (virbr) without going through the UTM.

Looking in iptables there a route to these networks
Does anybody now how I can set up a network filter in KVM (virsh) to disallow direct IP-acess?

[PHP]# route
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
default         fw.myutm.se     0.0.0.0         UG    0      0        0 br0
link-local      *               255.255.0.0     U     1000   0        0 br0
192.168.1.0     *               255.255.255.0   U     0      0        0 br0
192.168.2.0     *               255.255.255.0   U     0      0        0 virbr1
192.168.32.0    *               255.255.255.0   U     0      0        0 virbr2
192.168.122.0   *               255.255.255.0   U     0      0        0 virbr0[/PHP]


This thread was automatically locked due to age.