[pve-devel] new bridge code doesn't work with redhat kernel
Alexandre DERUMIER
aderumier at odiso.com
Fri Feb 8 08:15:51 CET 2013
>>Like uPNP on firewalls? Now I really gets scared!
Hopefully, it's the switch which do the gvrp request ;)
So the security is on the switch side and not proxmox.
It's just that currently, proxmox doesn't respond to gvrp request.
Gvrp can be usefull if you have a big number of vlan to manage and a big number of switch, as it can configure your whole switch chain/trunk.
But I'm always afraid of setting a wrong vlan in proxmox,like allow critical admin vlan to customers, so I don't use it ;)
----- Mail original -----
De: "Michael Rasmussen" <mir at datanom.net>
À: pve-devel at pve.proxmox.com
Envoyé: Jeudi 7 Février 2013 18:34:56
Objet: Re: [pve-devel] new bridge code doesn't work with redhat kernel
On Thu, 07 Feb 2013 17:45:49 +0100 (CET)
Alexandre DERUMIER <aderumier at odiso.com> wrote:
> gvrp is a protocol to autoconfigure vlans on network switches.
> (something like vtp in cisco world)
>
> I personnaly don't use it, because I'm scaried of security impacts.
>
Like uPNP on firewalls? Now I really gets scared!
--
Hilsen/Regards
Michael Rasmussen
Get my public GnuPG keys:
michael <at> rasmussen <dot> cc
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD3C9A00E
mir <at> datanom <dot> net
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE501F51C
mir <at> miras <dot> org
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xE3E80917
--------------------------------------------------------------
A beer delayed is a beer denied.
_______________________________________________
pve-devel mailing list
pve-devel at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
More information about the pve-devel
mailing list