[PVE-User] virtualization firewall
Dietmar Maurer
dietmar at proxmox.com
Fri Jan 15 11:55:34 CET 2010
> ----- Oryginalna wiadomość -----
> From: "Dietmar Maurer" <dietmar at proxmox.com>
> To: "Cirrus - Michał Szamocki" <cirrus at cirrus.pl>, pve-
> user at pve.proxmox.com
> How does that works with bridged network, i.e. when you do not know any
> IP address?
> - Dietmar
>
> Recently I was wondering how to answer your question. Our firewall
> bases only on addresses known by Proxmox Virtual Environment
> administrator. He has to know which IP addresses are used by Proxmox
> server and VEs. I assume that creating certain rule for particular VE
> is done by Proxmox administrator who has to receive request from VE
> administrator saying what traffic should be allowed (source IP, ports).
OK.
> I would like to admit that we are certain of our firewall solution
> capabilities to become a part of Proxmox VE and we are ready to support
> this process. Did you choose any solution yet?
The whole firewall issue is still open, and it seems that different people
has totally different needs. So for PVE it is best to not integrate anything.
But we can think of a way to plug in some FW scripts. Would it help it we
simply execute a hook script on VM start/stop?
- Dietmar
More information about the pve-user
mailing list