I have a Windows 8 pro machine running Hyper-V. This is a laptop with a LAN and a Wifi connection. As a consultant, when I'm on the customer's network, internet access is often limited for the employees, but set open for my machine (largely because I'm assumed to know what I'm doing :).
My issue:
I am often making and killing virtual machines in the course of the time I am there and these machines are restricted in Internet Access. These are usually brand new installs or copies from a clean template. If I'd ask them to get access it wouldn't be an issue (as I said, they trust me), but it's a hassle I'd like to avoid.
My solution:
- Define two External virtual switches, one for my LAN and one for my Wifi.
- Define an internal virtual switch
- Set up a Win2008R2 RRAS VM.
- Connect the three virtual switches to the RRAS.
- Set up the RRAS to team the LAN and Wifi, set up NAT and provide the Internal network with Internet/network no matter which adapter is connected.
- Connect all other virtual machines AND the Windows 8 host-OS to the Internal network.
My question:
A) Is the RRAS thing (step 5) feasible?
B) Can I deny my host OS direct access to my LAN and Wifi connection? I'm fine with seeing the adapters, but I want all traffic redirected over the Internal network.
If need be I can:
- Make the RRAS server Win 2012
- Make my Host OS Win 2012
(which would both involve badgering our IT-guy for the product key :p)
EDIT:
Win2012 supports teaming network adapters, so if I change my host OS to Win2012 I MIGHT be able to team the LAN and Wifi there and "share" it's connection with the internal network. That'd require reinstalling my system, so It's a last ditch solution.
Ok, After fiddling around with this idea on various laptops:
You CAN deny the host OS (or "management OS") access to your Phycical NICs:
Source