[pve-devel] [PATCH pve-firewall 0/3] improve conntrack INVALID handling
Alexandre Derumier
aderumier at odiso.com
Fri Feb 15 10:48:00 CET 2019
This fix connection breaking/hanging
Alexandre Derumier (3):
global -m conntrack --ctstate INVALID : PVEFW-reject instead DROP
PVEFW-reject ipv4 : remove icmp drop rule
remove -m conntrack --ctstate INVALID from PVEFW-Drop/PVEFW-Reject
chains
src/PVE/Firewall.pm | 11 +----------
1 file changed, 1 insertion(+), 10 deletions(-)
--
2.11.0
More information about the pve-devel
mailing list