I am playing a bit with QEMU, and tried to set up network with it. The
standard aproach is to create a bridge with one of the host's
interfaces, and I did that, having the guest and host on the same
address range, and they are able to communicate. But now the question
I have is this: I want the guest to be able to communicate ONLY with
the host, I don't want any of the traffic from it to be able to pass
to the outside world. To achieve that I thought the easiest way would
be to bridge the connection to one of the 'virtual' interfaces - say,
lo0 or a specially created for that occasion tun or gif. But, I didn't
have much luck with that... So, does anyone have an idea how to
achieve that - the traffic from the guest system not being able to
even accidentaly leak out of the host system?
--
viq
