From cfae1b2c4cd75b4bde942bec4aca439ad9cf881a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Beno=C3=AEt=20S?= <git@benpro.fr>
Date: Sat, 4 Sep 2021 08:54:52 +0000
Subject: [PATCH] Add port isolation

---
 docs/Howtos/HowtoLXD.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/docs/Howtos/HowtoLXD.md b/docs/Howtos/HowtoLXD.md
index d64b067..4ba2d43 100644
--- a/docs/Howtos/HowtoLXD.md
+++ b/docs/Howtos/HowtoLXD.md
@@ -12,13 +12,15 @@ $ lxc config set <name> limits.cpu 2
 $ lxc config set <name> limits.cpu.allowance 50%
 $ lxc config set <name> limits.memory.swap false
 $ lxc config device set <name> root limits.read 30MB
-$ lxc config device set <name> root.limits.write 10MB
+$ lxc config device set <name> root limits.write 10MB
 $ lxc config device set <name> root limits.read 20Iops
 $ lxc config device set <name> root limits.write 10Iops
-$ lxc config device set <name> root size 20GB
 $ lxc config device override <name> root size=20GB
 $ lxc profile device set default eth0 limits.ingress 100Mbit
 $ lxc profile device set default eth0 limits.egress 100Mbit
+# Port isolation make the container unable to see other containers
+$ lxc config device override <name> eth0 security.port_isolation=true
+$ lxc 
 $ lxc launch images:debian/11 <name>
 $ lxc config set <name> environment.LC_ALL=en_US.UTF-8
 $ lxc list