[pve-devel] [PATCH] disable iptables filter on bridge
Lars Wilke
lw at lwilke.de
Wed Mar 7 15:49:28 CET 2012
* Alexandre DERUMIER wrote:
> Hi, do you filter traffic between vm in the same bridge ?
Yes i do, even when using OpenVZ with a bridge setup.
I also have VPNs which get routed into various bridges.
The host plays firewall here.
Well, it is no problem to reactivate kernel support for
filtering on a bridge but this smells like a pitfall for
a case off uhh my firewall does not work.
May i suggest adding a note to /etc/network/interfaces about
network stack kernel tuning?
cheers
--lars
More information about the pve-devel
mailing list