[pve-devel] pve-firewall : enable|disable firewall at interface level

Dietmar Maurer dietmar at proxmox.com
Mon Apr 28 16:49:55 CEST 2014


> we can have vms with public interface (need firewall), and private interface
> (dedicatedvlan without firewall).
> 
> I would like to be able to enable/disable firewall in vmid.conf, in network
> interface config,instead globally for the whole vm in vmid.fw.
> 
> I have some database doing a lot of connections for example, and I don't want
> extra firewall lookup/conntrack from theses interfaces
> 
> 
> What do you think about it ?

I thought about having a flag per VM , but we can also add it to network interface config ( OK for me).




More information about the pve-devel mailing list