The KVM hosts in this setup has 4 network interfaces each. These interfaces are meant to be used in the following networks:
eth0 Internal Network
- eth1 Guest Network
- eth2 Internet Access
- eth3 Network Monitoring
Some of the domains will only have access to one of these network devices, some of the domains will have access to several of them.
This is the network we really want to protect. This is where our critical data is. From here there will be access to the internet.
Guests will have internet access, but will not have access to the internal network.
Public access to the system.
Goal is that all traffic on all networks is mirrored to this network. This way the entire network can be monitored and possible threats can be identified before they become a real problem.