[Openstack] Guest networking and magic IP
Tomas Vondra
vondra at czech-itc.cz
Wed Feb 17 11:02:24 UTC 2016
Andre Goree <andre at ...> writes:
> I am trying to determine how exactly I can manipulate traffic from a
> _guest's_ NIC using iptables on the _host_. On the host, there is a
> bridged virtual NIC that corresponds to the guest's NIC. That interface
> does not have an IP setup on it on the host, however within the vm
> itself the IP is configured and everything works as expected.
Hi!
No IP on the interface does not prevent you from using iptables. The kernel
filters any packets it sees. From what I remember from the OpenStack
developers, you can't use iptables with OpenVSwitch, but attaching rules to
a linux brcrl bridge should be perfectly fine.
Tomas
More information about the Openstack
mailing list