[pve-devel] [PATCH] add ips feature v3
Alexandre DERUMIER
aderumier at odiso.com
Wed Mar 19 08:51:53 CET 2014
>>I just noticed that I am too negative. You already spent much work into that,
>>so please continue. I am sure we will also solve the rest of the problems ;-)
No problem ;) I'll make a clean patch for incoming traffic only for now.
>>And I guess it would be a great feature if we have IPS!
I really need it ;)
----- Mail original -----
De: "Dietmar Maurer" <dietmar at proxmox.com>
À: "Alexandre DERUMIER" <aderumier at odiso.com>
Cc: pve-devel at pve.proxmox.com
Envoyé: Mercredi 19 Mars 2014 08:23:04
Objet: RE: [pve-devel] [PATCH] add ips feature v3
> > I'm thinked to add option to choose direction of ips filtering (in|out|both).
> > I don't known if user need to filter outgoing traffic ? (reverse shell exploit ?
> > I'm not sure about this) What do you think about it ?
>
> My feeling is that the whole thing gets to complex. We should make the basic
> firewall working, instead of spending so much time on ips. There are too
> many open questions for me.
I just noticed that I am too negative. You already spent much work into that,
so please continue. I am sure we will also solve the rest of the problems ;-)
And I guess it would be a great feature if we have IPS!
- Dietmar
More information about the pve-devel
mailing list