| Re: Iptables problem - when enabled, can't access VPSes [message #20260 is a reply to message #20259] |
Fri, 14 September 2007 10:47  |
ugob
Messages: 271
Registered: March 2007
|
Senior Member |
|
|
| ugob wrote on Fri, 14 September 2007 04:40 |
However, you must use iptables to firewall your VE's afterward, either using FORWARD rules on the HN, or using iptables inside the VEs.
|
| tomfra wrote on Fri, 14 September 2007 06:43 |
I realized that if I enable the venet0 forwarding, any VPS traffic will not be affected by the HN firewall. This is not that bad since I plan to install firewall on each of the VPSes (they will all be owned by myself, for different projects), but it would still be nice if the VPS traffic was, to a degree, affected by the HN firewall - so that for example a hacker's IP would get blocked for all of the VPSes on the HN, even if the attack was committed towards only one of them.
|
Using FORWARD rules on the HN, you could achieve this.
Please read the manual before asking questions:
http://download.openvz.org/doc/OpenVZ-Users-Guide.pdf
Please have a look at the wiki before asking questions:
http://wiki.openvz.org/Main_Page
[Updated on: Fri, 14 September 2007 10:47] Report message to a moderator |
|
|
|
OpenVZ Forum
Members
Search
Help
Register
Login
Home
