[CentOS-virt] Network isolation for KVM guests

Thu Mar 30 14:55:51 UTC 2017
Kristián Feldsam <admin at feldhost.cz>

for KVM guests I use VLANs

S pozdravem Kristián Feldsam
Tel.: +420 773 303 353
E-mail.: admin at feldhost.cz

www.feldhost.cz - FeldHost poskytuje kvalitní hostingové a serverové služby za příznivou cenu.

FELDSAM s.r.o.
V rohu 434/3
Praha 4 – Libuš, PSČ 142 00
IČ: 290 60 958, DIČ: CZ290 60 958
C 200350 vedená u Městského soudu v Praze

Banka: Fio banka a.s.
Číslo účtu: 2400330446/2010
BIC: FIOBCZPPXX
IBAN: CZ82 2010 0000 0024 0033 0446

> On 30 Mar 2017, at 16:06, C. L. Martinez <carlopmart at gmail.com> wrote:
> 
> Hi all,
> 
> What options exists under CentOS hosts to work with isolated networks?. For example, on BSD systems it is really trivial. In FreeBSD you can use setfib tools and on OpenBSD it is possible to use rdomain options. In 30 secs it is possible to work with isolated networks and assign process, ip address and routes (hidden from the main route table and ip addresses), etc.
> 
> But I can't find a similar solution for CentOS environments. I have found two similar options:
> 
> a/ Network namespaces (but doesn't provides a real network isolation)
> b/ VRF (but it is supported only for kernels 4.8 and up)
> 
> Any ideas?
> 
> Thanks.
> 
> -- 
> Greetings,
> C. L. Martinez
> _______________________________________________
> CentOS-virt mailing list
> CentOS-virt at centos.org
> https://lists.centos.org/mailman/listinfo/centos-virt