Containers/Networking

From OpenVZ Virtuozzo Containers Wiki
< Containers
Revision as of 16:21, 24 January 2010 by Ginkyo (talk | contribs) (append Category Networking)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search


There are several approaches of how to virtualize networking for containers. Those are desribed below.

Layer 3 virtualized network interface[edit]

This one is employed by OpenVZ's venet. See venet.

Layer 2 virtualized network interface[edit]

This one is employed by OpenVZ's veth. See veth.

Layer 3 isolated network (bind filtering)[edit]

This one is implemented in Linux-VServer. Basically, when a container calls bind() with INADDR_ANY, kernel actually binds the socket to some specific IP address(es). Some more details (not much) can be found at http://linux-vserver.org/Paper#Network_Separation

See also[edit]

Retrieved from "https://wiki.openvz.org/index.php?title=Containers/Networking&oldid=8094"