[pve-devel] firewall : cluster.fw [rules] section ?
Dietmar Maurer
dietmar at proxmox.com
Sun Jul 6 05:32:01 CEST 2014
> BTW, I'll also rework my ipv6 patch.
>
> I thinked about extend $ruleset, to something like
>
> $ruleset->{iptables}->{filter}
> $ruleset->{iptables}->{nat}
> $ruleset->{ip6tables}->{filter}
> $ruleset->{ebtables}->{filter}
>
> Like this, we can manage multi commands and filters.
>
> What do you think about it ?
Looks good, but I think we should evaluate nftables now (instead of using all those different binaries).
I have no idea if it is already usable?
More information about the pve-devel
mailing list