openstack team mailing list archive

[Wenhao Xu <xuwenhao2008@xxxxxxxxx>]

Hi,

I am wondering is there a configuration option in nova.conf to block the
traffic from VM instances to the host network? It seems risky to allow VMs
communicating with the host. What I am currently doing is manually
inserting a rule in the host's INPUT chain to drop the traffic. Any advice?

Thanks,
Wenhao

~_~