[pve-devel] applied: [PATCH pve-network v2 3/4] vnets : add ports isolation
Thomas Lamprecht
t.lamprecht at proxmox.com
Mon Nov 18 19:46:37 CET 2024
Am 12.11.24 um 16:54 schrieb Stefan Hanreich:
> From: Alexandre Derumier via pve-devel <pve-devel at lists.proxmox.com>
>
> Add support for bridge ports isolation
> https://github.com/torvalds/linux/commit/7d850abd5f4edb1b1ca4b4141a4453305736f564
>
> This allow to drop traffic between all ports having isolation enabled
> on the local bridge, but allow traffic with non isolated ports.
>
> Here,we isolate traffic between vms but allow traffic coming from outside.
>
> Main usage is for layer3 routed or natted setup, but some users have requested it
> for layer2/bridge network with proxy arp.
> So we can enable it at vnet level.
>
> Signed-off-by: Alexandre Derumier <alexandre.derumier at groupe-cyllene.com>
> [ SH: improve option naming and description slightly ]
> Signed-off-by: Stefan Hanreich <s.hanreich at proxmox.com>
> ---
> src/PVE/Network/SDN/VnetPlugin.pm | 5 +++++
> src/PVE/Network/SDN/Zones/Plugin.pm | 1 +
> 2 files changed, 6 insertions(+)
>
>
applied this one a bit ago, before getting the review mail from Stoiko, so
without his trailers, thanks to all involved nonetheless!
More information about the pve-devel
mailing list