[pve-devel] ovs 2.4 : conntrack && nat presenation
Alexandre DERUMIER
aderumier at odiso.com
Wed Jul 22 19:33:55 CEST 2015
>>Maybe better adopt nftables in PVE 4.0? It works on all network layers
>>of Linux and should be mature enough in 4.0.x kernels.
I'm not sure that nftables is already stable. (last time I checked (6month ago) it was missing a lot of things).
But yes, I'm still looking at it.
but having an openvswitch openflow native implementation, could be great too.
----- Mail original -----
De: "Dmitry Petuhov" <mityapetuhov at gmail.com>
À: "pve-devel" <pve-devel at pve.proxmox.com>
Envoyé: Mercredi 22 Juillet 2015 16:16:22
Objet: Re: [pve-devel] ovs 2.4 : conntrack && nat presenation
22.07.2015 12:42, Alexandre DERUMIER пишет:
> just found this:
>
> http://openvswitch.org/support/ovscon2014/17/1030-conntrack_nat.pdf
>
>
> I'll try to look at this in the next months. (ovs firewall without iptables/bridge trick)
>
Maybe better adopt nftables in PVE 4.0? It works on all network layers
of Linux and should be mature enough in 4.0.x kernels.
_______________________________________________
pve-devel mailing list
pve-devel at pve.proxmox.com
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
More information about the pve-devel
mailing list