[pve-devel] [PATCH] pve-common: PVE/Network: rework of activate_bridge_vlan
Dietmar Maurer
dietmar at proxmox.com
Sun Jan 27 10:21:46 CET 2013
Somehow, this GVRP seem to be a big security risk?
Everyone can announce/remove VLAN.
Found this on the net:
--------
GVRP involves huge security risk. Using GVRP in the network
means if one switch is mis-configured it can erase
the VLAN configuration.
--------
Not sure if we want that.
> -----Original Message-----
> From: Dietmar Maurer
> Sent: Sonntag, 27. Jänner 2013 10:01
> To: Dietmar Maurer; Stefan Priebe - Profihost AG
> Cc: pve-devel at pve.proxmox.com
> Subject: RE: [pve-devel] [PATCH] pve-common: PVE/Network: rework of
> activate_bridge_vlan
>
> > > No it doesn't. gvrp ist only available for vlan. You can't set it on a bridge.
>
> And why does it fail when we set it on the physical interface?
More information about the pve-devel
mailing list