[pve-devel] Bug in Firewall for KVM
Detlef Bracker
bracker at 1awww.com
Wed May 15 09:07:28 CEST 2019
Dear,
their are 2 bugs (or thats features?) in the firewall with VM with
Cloud-Init!
(
a) When in VM -> Cloud-Init -> Network-Interface: firewall set on
AND
b) VM -> Firewall -> Options -> IP-Filter: set on
)
AND
c) VM -> Firewall -> Options -> Firewall: set off / set on - is equal
will been ignored for IP-Filter !!!
The 1st is that traffic from outside will been blocked, why the settings
for cloud-init will not been used for the IP-Filter?!
The 2nd is that IP-Filter will not been ignored, when the Firewall is
generally off in the options! I understand, the filter is one thing of
the firewall and when the firewall is off, then all filters must been
ignored?! Thats from the understanding the same as when firewall switch
off by the network interface!
Regards
Detlef
More information about the pve-devel
mailing list