Network access from VM to host

virtual-machines kvm-virtualization
5,599

In my experience, the best way to setup Host <-> Guest communication in KVM, is to set up a second NIC on the VM used specifically for that purpose. There is a good article here that explains the ins and outs:

https://www.furorteutonicus.eu/2013/08/04/enabling-host-guest-networking-with-kvm-macvlan-and-macvtap/

Really, it's as easy as setting up a second network that uses macvlan, or even a bridged network that puts the VM directly on the same network as your host (depending on how you have your networking configured and how you want to lock down VM access to the Host network, this may or may not work for you).

Once you have your second NIC added to your VM, configure a static IP in the guest OS, and then use that for your Host <-> guest communication.

Of course, you'll need to make sure you are allowing the traffic not only on the Host, but also in the guest OS (in the VM).

Share:
5,599

Related videos on Youtube

cody
Author by

cody

Updated on September 18, 2022

Comments

  • cody
    cody over 1 year

    I am running a simple KVM-based VM on a Ubuntu host. VM is connected to a NAT virtual network. It can be accessed from the host, but cannot connect back to the host.

    From the VM, I can ping the host IP, but am unable to run traceroute or ssh to the host. I can however traceroute to the host gateway IP on the local LAN (the router IP).

    There is no firewall/iptables running on the host/VM and net.ipv4.ip_forward = 1 is set on the host. What else am I missing here in order to let VM to access the host?

    Thank you.

    • Admin
      Admin over 5 years
      How have you configured the host and guest networking?
    • Admin
      Admin over 5 years
      Thanks @MichaelHampton for looking into my question. I used virt-manager on the host to create a NAT network (virbr0 192.168.100.0/24) for VM. I can access the Internet from VM, but I can't ssh/traceroute to the host at 192.168.2.2. If I ping the host from VM, the traffic only reach virbr0 at 192.168.100.1, not the host interface, according to the tcpdump.
    • Admin
      Admin over 5 years
      But 192.168.100.1 is the host's IP address!
    • Admin
      Admin over 5 years
      Got that part. From VM, I can ping to 192.168.2.2 and 192.168.100.1, but cannot traceroute or ssh to them. I can traceroute to 192.168.2.1 though...
    • Admin
      Admin over 5 years
      I apologize for the lack of information in my original post. When I do traceroute 192.168.2.2, it reaches nowhere and just gives timeout indication (* * *...). The result is the same for 192.168.100.1. If I do traceroute 192.168.2.1, it takes one hop (192.168.100.1) to reach it.
  • cody
    cody over 5 years
    Thank you @frontsidebus. I will look into the macvlan solution and report back here. Just a quick wonder: is there any alternative way such as to configure the virbr0 bridge to allow VM<->host traffic? Thank you!
  • cody
    cody over 5 years
    The original problem was fixed after purging the iptable rules on the host machine. An application installed earlier made a change to it.
  • frontsidebus
    frontsidebus over 5 years
    rad. Glad you were able to get it fixed :)

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Existing KVM VM to Proxmox VE
converting KVM virtual machines to VMware-vsphere
Windows Guest VM no internet on Ubuntu KVM host
Managing qcow2 images with virsh
Use Vmware VGA driver on Proxmox for KVM Windows Guests
Can not display Proxmox console due to Connection time out
virsh qemu kvm editing xml has no effect
How I increase GPU video RAM in virt-manager?
Which CPU model to set for guest KVM when processor is Ivy Bridge?
Where is KVM guest configuration (xml) located in proxmox?