On Tue, Mar 11, 2008 at 09:33:10AM -0700, Lord Sporkton wrote:
> I am running OpenBSD on OpenBSD with qemu(from pkg) all 4.2
>
> I am using the host OS for network services, ntp, dns, and router,
>
> I am using the guest OS's for client services, www, ftp, sql, etc.
Eh... are you aware that qemu without kqemu is very, very slow? And that
this list has a "virtualization does not enhance security" mantra?
Just checking. If you want to experiment with a "real" network without
having a large amount of hardware, what you're doing is actually a
pretty good way of going about it. Just don't try to *actually* run it
in production.
> My goal is to have all the guests on internal addresses and use the
> host to nat them to publics as needed, as well as the host providing
> ipsec tunnels to allow other locations to access the client services
> via internal address.
>
> My question is:
> Is it best to put my private gateway ip on the real ethernet interface
> or on a loopback or other interface on the host?
I'm not really sure what you mean. Most qemu setups I've seen connect to
the host OS via tunX, so there is not really a "private gateway" there.
You could NAT your real external interface into these tun devices.
Joachim
--
TFMotD: ul (1) - do underlining
