>
> Given that potentially sensitive information is flowing between the two
> VMs, we want to prevent the host from being able to sniff on the traffic
> between the two VMs. Is that possible in any way? If so, how can we
> prevent the host to see traffic of the internal network?
So why not have i
Thanks for your response. Setting up macvtap is not a feasible solution
for our use case. Essentially our use case is that we have two VMs and
for security reasons we want to isolate these VMs as much as possible,
as they are handling potentially sensitive information. One of the VMs
acts as ga
> How to set up an internal network between two KVM network interfaces
> while using static networking (avoiding dnsmasq) and while avoiding a
> host bridge interface (virbr)?
>
I am also not using any network config in libvirt. All hosts have same vlans
and interfaces and I just use a macvtap o