Hi Alexandre, to be honest, I am also not particularly happy with the current linux bridge based implementation, because
1.) I does not work 100% out of the box (needs veth hack). Difficult to explain to users. 2.) iptables chains grows if we have many VM (clumsy) 3.) does not work with OVS So I wonder if we could use a similar approach for linux bridge instead? We currently have: veth0<-->vmbr0<-->tapXXXiY vmbr0<-->vethXXXiY<-->fwbrXXXiY<-->tapXXXiY I wonder if that would help to solve above problems? And what performance would be get? _______________________________________________ pve-devel mailing list [email protected] http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
