[pve-devel] firewall and IGMP
Alexandre DERUMIER
aderumier at odiso.com
Wed May 21 06:01:07 CEST 2014
Hi,
I think igmp is working because of
ruleset_addrule($ruleset, $chain, "-m addrtype --dst-type MULTICAST -j ACCEPT");
so,any multicast traffic is allow, including igmp
----- Mail original -----
De: "Alexandre DERUMIER" <aderumier at odiso.com>
À: "Dietmar Maurer" <dietmar at proxmox.com>
Cc: pve-devel at pve.proxmox.com
Envoyé: Mardi 20 Mai 2014 07:42:57
Objet: Re: [pve-devel] firewall and IGMP
I don't have notice problem, but I'll verify tomorrow.
(I'll test multicast inside vms, igmp snooping on vmbr,igmp to physical switch)
----- Mail original -----
De: "Dietmar Maurer" <dietmar at proxmox.com>
À: pve-devel at pve.proxmox.com, "Alexandre DERUMIER (aderumier at odiso.com)" <aderumier at odiso.com>
Envoyé: Mardi 20 Mai 2014 06:39:55
Objet: firewall and IGMP
Redhat docs mentions that we should add a rule for IGMP:
# iptables -I INPUT -p igmp -j ACCEPT
Is that really needed, or does the kernel accept that by default?
_______________________________________________
pve-devel mailing list
pve-devel at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
More information about the pve-devel
mailing list