OpenVZ Forum


Home » General » Support » private ip for host-to-ve communication only
Re: private ip for host-to-ve communication only [message #7471 is a reply to message #7470] Sat, 14 October 2006 07:28 Go to previous messageGo to previous message
nikb is currently offline  nikb
Messages: 4
Registered: October 2006
Junior Member
That was helpful, thanks.

My servers (both HN and VEs) are debian setups, so you can configure
ipv4 forwarding both in sysctl.conf and in /etc/network/options.

I had it turned off in the options-file but turned on (by the openvz-installation) in sysctl.conf. Turns out sysctl.conf prevailed, and it was thus turned on:

hardwarenode:~# cat /proc/sys/net/ipv4/ip_forward
1

OK, but now lets make things a little more difficult: My HN is also hosting a
regular ve with a regular, routeable external ip that, of course, should remain
reacheable from outside. So I really cannot turn off ip forwarding altogether.
Any idea how I could disable forwarding for one specific subnet or maybe just for interface venetXXX?

On top of that - I dont even think that regular data got routed out of my eth0 - I think my provider really just picked up arp packets.

But right now, I`m even lacking a proper way to find out what exactly is leaving my HN. Probably should look into it with tcpdump.

Report message to a moderator

[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: how to write a config file?
Next Topic: dual nic environment
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sat Nov 02 08:55:56 GMT 2024

Total time taken to generate the page: 0.03161 seconds
Powered by FUDforum Powered by Virtuozzo Containers