2522a2523,2538
> If you want to enable internet access enable NAT forwarding on the linux host (as root).
> 
> To do this, first globally enable forwarding:
> .P1
> echo 1 > /proc/sys/net/ipv4/ip_forward
> .P2
> Enable Masquerading for everything comping from the VM's tap device (eth0 being your host's way to the internet):
> .P1
> iptables -t nat -A POSTROUTING -s 10.0.0.0/24 -o eth0 -j MASQUERADE
> .P2
> block everything else from being forwarded:
> .P1
> iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
> iptables -A FORWARD -s 10.0.0.0/24 -i tap0 -j ACCEPT
> iptables -P FORWARD DROP
> .P2