On Wed, Dec 22, 2010 at 10:09:54AM +0100, Paweł Krześniak wrote:
2010/12/22 Eric Blake <eblake@redhat.com>:
On 12/21/2010 03:40 PM, Paweł Krześniak wrote:
This patch adds possibility to run customized DNS/DHCP environment, by spawning dnsmasq with alternative configuration file if such file exists. This allows you to set any parameter described in dnsmasq(8). Configuration file is expected to be located in file named "<network_name>-dnsmasq.conf" in DNSMASQ_STATE_DIR directory. If configuration file doesn't exists dnsmasq is spawned as before.
You'll want to wait for danpb or DV to comment, but I'm thinking this might be rejected, and that instead, we should consider addressing the issue of what dnsmasq parameters you want to affect, and how we can encode that into the libvirt XML without having to rely on an external dnsmasq conf file.
I want to create isolated environment for guests - they will be connected to one bridge and will use private DNS data. No single packet from this isolated network can reach external network - this means no 53/udp traffic to resolvers defined in host's /etc/resolv.conf.
This sounds like a useful feature for libvirt to directly support, rather than requiring a hack in a external config file. eg, Some XML element to indicate whether to enable DNS proxying or not. Regards, Daniel