You are not logged in.
Hey Archers,
im using Arch quit along for day to day purpose but now i have to setup a small server for a hotel.
The hardware is a HP ProLiant MicroServer Gen8 with dual 1Gig NIC.
The Server runs a Windows2008R2 Server with MS-SQL Server inside Qemu-KVM for a special hotel-management application.
As second it runs the Controller-Deamon (java-app) for a hotel-wide wifi installioation of several APs.
Besides this it should also be used as a normal office server with smb/nfs and perhaps printing.
I want the machine also to route the network and thought it would be a good idea to put the firewall and dnsmasq up in a LXC.
With LXC it is possible to access a ethernet-port physically (lxc.network.type = phys). My plan was to setup the router inside LXC with one dedicated (mapped as "phys") eth-Port which is connected to the WAN to the container and use the other eth-port as bridege (br0) to connect it to the host-system witch is running the mentioned services....
Beside that this setup is quite complicate i want to ask if this is a good idea or do i oversee some important parts which makes my server quite unsecure to the internet?
Thanks for your help and all the best
mirac
Last edited by miraculli (2014-01-27 16:16:22)
Offline