Quote:
Originally Posted by pan64
This is exactly the opposite. I want to hide everything but the router and the outer net/space from the VM.
Imagine, I want to do (examine?) strange things inside this VM, but I want to protect all my home network.
|
Wait, do you mean that you want the virtual machine exposed to the internet, but with no access to the local network?
Tricky!
Still using manual configuration of a bridged interface: Define a new subnet JUST for the VM. Give it a default route to the gateway, but route the internal subnet it is NOT on the the LO (local) interface at 127.0.0.1. There are other ways, but if you know how to get this working it should suffice.
Actually the subnet of the VM can be a smaller subset (two nodes) of the full internal network. As long as it can ONLY reach itself and the router using that subnet you are golden.
I must say, this is backwards to everything I have seen, and not what I understood you wanted to accomplish. Good luck with it.
This may take a little work on the router to get right, but even without that the routing of the rest of the subnet to an interface nothing exterior can reach should isolate that node from the rest of your internal.