[pve-devel] [PATCH 0/7] Backport corosync related firewall changes to stable-5
Stefan Reiter
s.reiter at proxmox.com
Mon Jul 22 15:21:48 CEST 2019
This includes the "followup series" (info printing on localnet call, fix of
defindness checks on standalone nodes).
Modifications for backport:
- Use totem transport defaults from 2.x (i.e. multicast is default)
- Hostname resolving behaviour adapted to corosync 2.x
- Include --source filter for multicast packets
(this one could probably be added to stable as well, I'll look into it)
cluster: Stefan Reiter (1):
Add functions to resolve hostnames and iterate corosync nodes
data/PVE/Corosync.pm | 91 ++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 91 insertions(+)
firewall: Fabian Grünbichler (1):
corosync: refactor if conditions
firewall: Stefan Reiter (5):
Create corosync firewall rules independently of localnet
Update and add tests for corosync firewall changes
Only enable multicast rules when needed
Check if corosync.conf exists before calling parser
Display corosync rule info on localnet call
src/PVE/Firewall.pm | 79 ++++++++++++++++++++++++++-------
src/PVE/Service/pve_firewall.pm | 23 ++++++++++
test/corosync.conf | 52 ++++++++++++++++++++++
test/fwtester.pl | 11 ++++-
test/test-default-rules1/tests | 4 ++
5 files changed, 151 insertions(+), 18 deletions(-)
create mode 100644 test/corosync.conf
--
2.20.1
More information about the pve-devel
mailing list