>>Maybe better adopt nftables in PVE 4.0? It works on all network layers >>of Linux and should be mature enough in 4.0.x kernels.
I'm not sure that nftables is already stable. (last time I checked (6month ago) it was missing a lot of things). But yes, I'm still looking at it. but having an openvswitch openflow native implementation, could be great too. ----- Mail original ----- De: "Dmitry Petuhov" <[email protected]> À: "pve-devel" <[email protected]> Envoyé: Mercredi 22 Juillet 2015 16:16:22 Objet: Re: [pve-devel] ovs 2.4 : conntrack && nat presenation 22.07.2015 12:42, Alexandre DERUMIER пишет: > just found this: > > http://openvswitch.org/support/ovscon2014/17/1030-conntrack_nat.pdf > > > I'll try to look at this in the next months. (ovs firewall without > iptables/bridge trick) > Maybe better adopt nftables in PVE 4.0? It works on all network layers of Linux and should be mature enough in 4.0.x kernels. _______________________________________________ pve-devel mailing list [email protected] http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel _______________________________________________ pve-devel mailing list [email protected] http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
