> How do you want to manage rules ? > > example: > > cluster.fw > ----------- > [ipset myipset] (generate ipset PVEFW-myipset) ... > vmid.fw > > [ipset myipset] (generate ipset VMID-myipset) > > [RULES] > OUT ACCEPT net0 +myipset > > (do we look in VMID-myipset first, then if not exist PVEFW-myipset) ?
no, I thought we only lookup ipsets in the corresponding file. _______________________________________________ pve-devel mailing list [email protected] http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
