aderumier"
Cc: "pve-devel"
Envoyé: Jeudi 21 Février 2019 09:13:36
Objet: Re: [pve-devel] [PATCH pve-firewall] add nf_conntrack_tcp_be_liberal
option
On Wed, Feb 20, 2019 at 11:05:50AM +0100, Alexandre Derumier wrote:
> Allow to not flag as invalid, out of windows packets.
>
>
On Wed, Feb 20, 2019 at 11:05:50AM +0100, Alexandre Derumier wrote:
> Allow to not flag as invalid, out of windows packets.
>
> Can't persist in sysctl at boot, because if need to be set
> after conntrack loading.
What if you add nf_conntrack to /etc/modules-load.d?
systemd-sysctl.service contain
Allow to not flag as invalid, out of windows packets.
Can't persist in sysctl at boot, because if need to be set
after conntrack loading.
Signed-off-by: Alexandre Derumier
---
src/PVE/Firewall.pm | 20 +++-
1 file changed, 19 insertions(+), 1 deletion(-)
diff --git a/src/PVE/Fi
