Why do we check vmbr0-IN for INPUT? -----
-A PVEFW-INPUT -m physdev --physdev-in tap100i0 -j tap100i0-OUT ... -A tap100i0-OUT -m mark --mark 0x1 -g vmbr0-IN ... -A vmbr0-IN -m physdev --physdev-out tap100i0 --physdev-is-bridged -j tap100i0-IN -A vmbr0-IN -j ACCEPT ... That looks strange to me.
_______________________________________________ pve-devel mailing list [email protected] http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
