Hello,
I'm looking to run an "untrusted" potentially compromised guest and I want to ensure that it can only connect to the host domains proxy and not the hosts LAN subnet. However the host is trusted and must remain available normally on the network.
I was looking into running NAT and restricting the traffic by using a host route command or two, but it doesn't seem like I can isolate the guest VM traffic as the source traffic.
What's the best and most secure way of achieving this restriction?
Kev
Restrict "untrusted" guest network to proxy
-
scottgus1
- Site Moderator
- Posts: 20945
- Joined: 30. Dec 2009, 20:14
- Primary OS: MS Windows 10
- VBox Version: VirtualBox+Oracle ExtPack
- Guest OSses: Windows, Linux
Re: Restrict "untrusted" guest network to proxy
Take a look at Virtualbox Networks: In Pictures: "Sandbox". It can let the guest see the internet but not the host LAN. It could be possible to set the firewall router guest to use the host's proxy.
Re: Restrict "untrusted" guest network to proxy
Perfect! Thanks. I'll give it a go.