irectly on VIF ports. Thus, the existing implementations of Nova security
groups and spoof-prevention aren’t compatible. We are targeting work for
this in Folsom.
On Fri, Jul 27, 2012 at 6:36 AM, Jesse Gross wrote:
> On Thu, Jul 26, 2012 at 12:40 PM, Luiz Ozaki
> wrote:
> >
=0x800,nw_dst=10.1.0.3,action=drop
but iptables can not work for the request send from inside.
could u please tell me the alternate way to write the rule?
thanks.
On Thu, Jul 26, 2012 at 3:22 AM, Jesse Gross wrote:
> On Tue, Jul 24, 2012 at 5:59 PM, pf shineyear wrote:
> > hi all ,
hi all ,
i have a big problem with ovs + iptables + xcp in ubuntu 12.04
i can limit every request input on xenbr1, but i can not do like iptables
established filter for the vm output,
when a vm send a request output , i can see it success to go out , and in
eth1, i can see the response come back
