Consider we are facing the following task:
1) # We have limited range of IP addresses granted by ISP. We want to assign as many granted IPs to containers as possible.We do not want to protect containers from Internet.2) # We want to protect the [[HN]] OS ([[CT]]0) from Internet and make it possible to manage containers from [[CT0]] within local area network.
Assume we have a [[HN]] with 2 Ethernet cards (interfaces eth0 and eth1), OpenVZ kernel 2.6.18-028stab033, vzctl version 3.0.16,