From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.33)
	id 1BpsCv-0005kT-UT
	for qemu-devel@nongnu.org; Wed, 28 Jul 2004 13:27:14 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.33)
	id 1BpsCs-0005jO-1m
	for qemu-devel@nongnu.org; Wed, 28 Jul 2004 13:27:11 -0400
Received: from [199.232.76.173] (helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.33) id 1BpsCs-0005j7-0X
	for qemu-devel@nongnu.org; Wed, 28 Jul 2004 13:27:10 -0400
Received: from [159.178.60.122] (helo=trend1.shands.ufl.edu)
	by monty-python.gnu.org with esmtp (Exim 4.34) id 1Bps8o-0002no-Nm
	for qemu-devel@nongnu.org; Wed, 28 Jul 2004 13:22:58 -0400
Message-Id: <s107a8b0.020@GW-FS1.SHANDS.UFL.EDU>
Date: Wed, 28 Jul 2004 13:22:23 -0400
From: "Thomas Munn" <munntj@shands.ufl.edu>
Subject: Re: [Qemu-devel] IPTABLES howto?
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Reply-To: qemu-devel@nongnu.org
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org

I should add that I meant a GUEST os!    
 
 
>>>munntj@shands.ufl.edu 07/28 10:13 am >>> 

I posted once before, so I will try again.  My thought is that it is
simply impossible to iptables a host operating system with qemu. 
Iptables rules on input,output chains of both natted, and non-natted ips
don't seem to block any packets.  I tried all possible combinations. 
Hopefully someone is smarter than me and can post a suggestion, if such
a thing is even possible. 
 
THomas
 
--------------------------- 
Thomas  Munn CISSP 
Security Analyst 
Shands Hospital 
munntj@shands.ufl.edu