[pve-devel] pve-firewall : iptables V2
Alexandre DERUMIER
aderumier at odiso.com
Fri Feb 14 10:36:27 CET 2014
>>We can old and new ruleset, so there is no need to list /sys/class/net/vmbrX/brif/tapX
can you provide an example ?
----- Mail original -----
De: "Dietmar Maurer" <dietmar at proxmox.com>
À: "Alexandre DERUMIER" <aderumier at odiso.com>
Cc: pve-devel at pve.proxmox.com
Envoyé: Vendredi 14 Février 2014 08:34:12
Objet: RE: [pve-devel] pve-firewall : iptables V2
> >>another way, we can list of all the tap,group,bridge with firewall
> >>enabled,
>
> I think it can be done fast, listing /sys/class/net/vmbrX/brif/tapX
No sure if we need that.
> so we can find in iptables-save if stale tap chains exist
We can old and new ruleset, so there is no need to list /sys/class/net/vmbrX/brif/tapX
More information about the pve-devel
mailing list