[Users] How to allow a container to send "spoofed" IP packets?
(for VPN tunnels without NAT)
Antonio Querubin
tony at lava.net
Fri Mar 5 14:31:05 EST 2010
On Fri, 5 Mar 2010, Nils Toedtmann wrote:
> After reading http://wiki.openvz.org/Veth i must admit that i use vnet
> (i just followed the usual instructions for OpenVZ on CentOS). Thanks
> for pointing me to veth, looks promising and much closer to the
> networking setup of all other virtualisation techniques i know.
http://wiki.openvz.org/VEs_and_HNs_in_same_subnets
> My problem is that i have a productive environment and i do not want to
> reconfigure the networking for all containers. Can i have a mixed setup,
> using veth for only some of the containers? (i am familiar with
> routing/bridging/proxy_arp etc)
At some point you'll need to move the host's own IP configuration to the
bridge interface which would require a little bit of downtime but if
you're quick the outage should be minimal.
Antonio Querubin
808-545-5282 x3003
e-mail/xmpp: tony at lava.net
More information about the Users
mailing list