[lxc-users] best way to create network segments for containers ..
István Király
LaKing at D250.hu
Sun Mar 23 05:52:13 UTC 2014
Hello fellow users, ..
I have the default libvirt provided simple veth network setup for now, can
create containers, connect to network, and so on. .. so far so good. In the
default setup, containers can see each other, however, ...
I also would also like to have network where they can not see each-other.
Goal would be to prevent a container from sniffing on the unencrypted data
flow of another container.
is it possible to have an interface/network-type that has only direct
connections to the host, without a gateway or internet of course? What
would be the best approach for this? macvlan? openvpn? .. I hope I don't
need to create an interface for each connection on the host. :)
Can someone give me some advice?
Thank you. .)
--
István Király
+36 209 753 758
LaKing at D250.hu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20140323/6aebf2e1/attachment.html>
More information about the lxc-users
mailing list