#nixos-on-your-router on 2018-11-27

18:17 <gchristensen> this is slightly off topic, but I have a VM and I'd like to ensure that VM can't talk to anything on my local network, only things on the public internet. is this possible?

18:21 <cransom> if it's got a virtual ethernet, it's subject to all the same rules as any other iptables interface. if you want to go further, you can get into routing tables and make sure the vm doesn't have a route to anything internal

18:24 <gchristensen> hmm cool

18:24 <gchristensen> great

18:27 <cransom> i haven't used them in a while, but these are left in my config,

18:27 <cransom> https://gist.github.com/cransom/2c06e7e81cefb0b8f143461dbe031234

18:27 <cransom> rinse/repeat for ipv6

18:30 <gchristensen> hmmm!

18:33 <cransom> this was not for a vm, but a virtual ethernet doesn't get special traffic handling as far as i know of

18:34 <gchristensen> I think you're right

18:34 <gchristensen> thank you, I'll pass this along to someone and see if we can sort this out

18:54 dtz has quit [Remote host closed the connection]

18:54 codyopel[m] has quit [Read error: Connection reset by peer]

18:54 Ox4A6F has quit [Remote host closed the connection]

19:12 codyopel[m] has joined #nixos-on-your-router

19:25 Ox4A6F has joined #nixos-on-your-router

19:25 dtz has joined #nixos-on-your-router

19:56 codyopel[m] has quit [Write error: Connection reset by peer]

19:56 dtz has quit [Remote host closed the connection]

19:56 Ox4A6F has quit [Read error: Connection reset by peer]

20:03 codyopel[m] has joined #nixos-on-your-router

20:17 dtz has joined #nixos-on-your-router

20:17 Ox4A6F has joined #nixos-on-your-router