[pve-devel] pve-firewall : ebtables patches v2
Stefan Priebe
s.priebe at profihost.ag
Tue Jul 15 19:43:50 CEST 2014
Am 15.07.2014 17:45, schrieb Alexandre Derumier:
> I have merged stefan patches and my today fix
> (apply on top of ipv6 patches)
- it seems to miss the leading 0 fix for mac addresses in ebtables
Also it sets filter_enabled to 1 even if layer2filter_protocols is disabled.
This results in:
-s ! MAC -j DROP
-j DROP
So it drops all packages.
My patch removed set filter_enabled to 1 so that the result was:
-s ! MAC -j DROP
-j ACCEPT
Stefan
> _______________________________________________
> pve-devel mailing list
> pve-devel at pve.proxmox.com
> http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
>
More information about the pve-devel
mailing list