[pve-devel] idea: new section 'sysrules' inside vmid.fw
Friedrich Ramberger
comfrit at aon.at
Thu Sep 4 20:09:03 CEST 2014
A good one - I guess the "rules" (without "sys") are "userrules" then (=
managed by user-permission level) - maybe we can use this term in the
config-file too (in order to make it more transparent) like
[userrules]
But, of course, which term tuo use it is neither essential nor important
-----Original Message-----
From: pve-devel [mailto:pve-devel-bounces at pve.proxmox.com] On Behalf Of
Dietmar Maurer
Sent: Donnerstag, 04. September 2014 19:47
To: pve-devel at pve.proxmox.com
Subject: [pve-devel] idea: new section 'sysrules' inside vmid.fw
inside /etc/pve/firewall/<vmid>.fw
----------------
[sysrules]
group ...
IN ...
OUT ...
[rules]
...
-------------
Where all rules inside [sysrules] have higher priority than other rules.
Only System Admin can see/change those rules.
good or bad idea?
_______________________________________________
pve-devel mailing list
pve-devel at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
More information about the pve-devel
mailing list