[libvirt] [PATCH] lxc: give RW access to /proc/sys/net/ipv[46] to containers
Daniel P. Berrange
berrange at redhat.com
Wed Dec 3 10:10:28 UTC 2014
On Wed, Dec 03, 2014 at 09:49:51AM +0100, Cédric Bosdonnat wrote:
> Some programs want to change some values for the network interfaces
> configuration in /proc/sys/net/ipv[46] folders. Giving RW access on them
> allows wicked to work on openSUSE 13.2+.
But we sure only want to allow this if the guest is using a private
network namespace. In the shared namespace we don't want to allow the
gues to modify networking of the host.
Regards,
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|
More information about the libvir-list
mailing list