Your answer was very helpful. Can you please give more examples, How can I allow http out and http in traffic? Then I can explore on my own.
Thanks, DV -----Original Message----- From: Jesse Gross <[email protected]> To: [email protected] Cc: [email protected] Sent: Wed, 3 Feb 2010 12:42 am Subject: Re: [ovs-discuss] apply ACL to control network traffic ACLs can be created by adding flow entries to the switch. By default the flow table of Open vSwitch contains one entry, which is to perform the normal switch processing on all traffic (allow all). To restrict traffic you can create additional flow entries using the ovs-ofctl program. A simple example would be: utilities/ovs-ofctl add-flow br0 idle_timeout=0,icmp,action= This will drop all ICMP traffic flowing across switch br0. The ovs-ofctl man page describes the syntax of this command (and more). Jesse On Tue, Feb 2, 2010 at 6:14 AM, <[email protected]> wrote: Hi, I am new user to open vswitch. I am using open vswitch on XenServer. I want to know how to create ACL to control network traffic and how can I have ACL specific to particular VM? In short I want to know about ACL configuration in open vswitch. Can anyone suggest me source of details regarding this? Thanks, Devang _______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss_openvswitch.org =
_______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss_openvswitch.org
