[pve-devel] [PATCH] use linko+ name for ovs fwbrint interfaces
Dietmar Maurer
dietmar at proxmox.com
Tue May 13 18:54:43 CEST 2014
> -----Original Message-----
> From: Alexandre DERUMIER [mailto:aderumier at odiso.com]
> Sent: Dienstag, 13. Mai 2014 18:30
> To: Dietmar Maurer
> Cc: pve-devel at pve.proxmox.com
> Subject: Re: [pve-devel] [PATCH] use linko+ name for ovs fwbrint interfaces
>
> >>Why not:
> >>
> >>-A PVEFW-FORWARD -i vmbr+ -j RETURN
> >>
> >>or is this a bad idea?
>
> I need to verify if we don't have -i vmbr+ -o venet0 matching rule
oh, sure - but we can filter bridged traffic only?
-A PVEFW-FORWARD -i vmbr+ -m physdev --physdev-is-bridged -j RETURN
More information about the pve-devel
mailing list