Port forwarding only from localhost interface

The current code configures port forwarding to the VM from all host interfaces. Most users probably don't want to expose their unsecured VMs to their local network (or worse). This patch limits port forwarding to the host's 127.0.0.1 interface. Partial-Bug: 1312764 Implements: blueprint openstack-training-labs Change-Id: Ib28439c728691510ac710544564e92193e66bf52
2014-06-17 17:50:19 +02:00 · 2014-06-17 17:50:19 +02:00 · 238dcbc2b9
commit 238dcbc2b9
parent f2e5e3bb10
1 changed files with 2 additions and 1 deletions
--- a/labs/lib/osbash/virtualbox.functions
+++ b/labs/lib/osbash/virtualbox.functions
@ -288,12 +288,13 @@ function vm_mem {
    $VBM modifyvm "$NAME" --memory "$MEM"
 }

+# Port forwarding from host to VM (binding to host's 127.0.0.1)
 function vm_port {
    local NAME="$1"
    local DESC="$2"
    local HOSTPORT="$3"
    local GUESTPORT="$4"
-    $VBM modifyvm "$NAME" --natpf1 "$DESC,tcp,,$HOSTPORT,,$GUESTPORT"
+    $VBM modifyvm "$NAME" --natpf1 "$DESC,tcp,127.0.0.1,$HOSTPORT,,$GUESTPORT"
 }

 function vm_nic_hostonly {