This is a very specific use case, for some VNETs (not used by the users just by the sys admins) we have some floating IPs that are not managed by OpenNebula or included in our VNET. The problem is that by default OpenNebula OVS VNETs have the mac-spoofing and IP hijacking rules enabled by default:
And that’s great! but we want to disable this for some specific VMs. I saw that is possible to disable it globally just changing
/var/lib/one/remotes/vnm/OpenNebulaNetwork.conf and set:
But we only want to disable these rules for an specific VM or VNET, it’s possible to do that? I mean it is possible to set
ARP_CACHE_POISONING or another similar option within VM NIC or VNET template sections?
Thanks in advance!