tatay188 opened a new issue, #13266: URL: https://github.com/apache/cloudstack/issues/13266
### problem CS 4.22.0 Host Ubuntu 4.22 KVM vRouter on VPC ACLs This VPC ACL feature is beyond good, it's awesome. However @weizhouapache with all the love I have for the team. That's not right, ACL should be applied to the edge - and we know that should not be to interpretation, and many think are just Cisco best practices - we should have a feature to select WAN-side, LAN-side or named Edge-side, Internal-Side which seems are more contemporary names. - RFC 2827 - RFC 3704 Suggestion: if decided to make it RF-ish. To make easy the transition for existing systems, the updated feature will apply to LAN-side (internal-side) by default. ### versions CS 4.22.0 Host Ubuntu 4.22 KVM running vRouter with 8CPUs and 8GRAM, oversubscription is 1:1 for all systems. ### The steps to reproduce the bug 1. Create a VPC 2. Add the custom ACL with ingress only 3. the ACL does not filter the traffic, as is applied to the vRouter LAN AKA Internal interface. ### What to do about it? _No response_ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
