You are viewing an old version of this page. View the current version.
Compare with Current View Page History
Version 1 Current »
copy real interface towards bridge
[root@nmsprime ~]# cd /etc/sysconfig/network-scripts/ [root@nmsprime network-scripts]# cp ifcfg-eno49 ifcfg-br0
Edit the Interface and add BRIDGE interface
[root@nmsprime network-scripts]# vi ifcfg-eno49 TYPE=Ethernet BOOTPROTO=static DEVICE=eno49 ONBOOT=yes BRIDGE=br0
Edit the bridge file and add the public IP towards our new bridge
[root@nmsprime network-scripts]# vi ifcfg-br0 TYPE=Bridge BOOTPROTO=static DEVICE=br0 ONBOOT=yes IPADDR=<public ip> NETMASK=<public netmask> GATEWAY=<public gw> DNS1=<public DNS, e.g. 8.8.8.8>
Restart the network interface
[root@nmsprime ~]# systemctl restart network
Check the bridge
[root@nmsprime ~]# ip addr show br0 [root@nmsprime ~]# ping google.de
The real Host normally only needs SSH access. It is recommend to allow SSH only from dedicated IPs
# add ACL firewall-cmd --permanent --zone=public --add-source=192.168.100.0/24 firewall-cmd --permanent --zone=public --add-source=192.168.222.123/32 # add SSH firewall-cmd --permanent --zone=public --add-port=22/tcp # Reload firewall-cmd --reload # Check firewall-cmd --zone=public --list-all
This is a 1-to-1 copy from the perfect article, section 3:
https://www.linuxtechi.com/install-kvm-hypervisor-on-centos-7-and-rhel-7/