What would be the best network setup for me?

  • I have an MQTT broker on my host’s localhost

    • There is a listener on port 1883 and another one on port 1884 (where I have an ACL)
  • There is an iptables rule that directs traffic originally sent to port 1883, to port 1884 when UID != 0 (traffic originated from non-root user)

  • I have apps on host os that post to localhost on port 1883 and reach the MQTT broker

  • My desire would be to have traffic generated by apps running on guest os to end up in the 1884 (ACL) port.

  • I’m lost at how to configure my network for this situation? (veth, macvlan, phys, should I create a bridge? etc ?)