Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On 04/15/2014 10:06 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 10:04:01AM -0400, Stefan Berger wrote: On 04/15/2014 07:42 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 07:40:41AM -0400, Stefan Berger wrote: On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14,

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On Mon, Apr 14, 2014 at 04:47:50PM -0400, Stefan Berger wrote: On 04/08/2014 11:37 AM, Daniel P. Berrange wrote: Currently we have three places which interact with the firewall - util/virebtables - simple MAC filtering used by QEMU driver - util/viriptables - used by network driver

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14, 2014 at 04:47:50PM -0400, Stefan Berger wrote: On 04/08/2014 11:37 AM, Daniel P. Berrange wrote: Currently we have three places which interact with the firewall - util/virebtables - simple MAC filtering used by QEMU driver

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On Tue, Apr 15, 2014 at 07:40:41AM -0400, Stefan Berger wrote: On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14, 2014 at 04:47:50PM -0400, Stefan Berger wrote: On 04/08/2014 11:37 AM, Daniel P. Berrange wrote: Currently we have three places which interact with the firewall

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On 04/15/2014 07:42 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 07:40:41AM -0400, Stefan Berger wrote: On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14, 2014 at 04:47:50PM -0400, Stefan Berger wrote: On 04/08/2014 11:37 AM, Daniel P. Berrange wrote: Currently we

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On Tue, Apr 15, 2014 at 10:04:01AM -0400, Stefan Berger wrote: On 04/15/2014 07:42 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 07:40:41AM -0400, Stefan Berger wrote: On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14, 2014 at 04:47:50PM -0400, Stefan Berger wrote: On

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On 04/15/2014 10:06 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 10:04:01AM -0400, Stefan Berger wrote: On 04/15/2014 07:42 AM, Daniel P. Berrange wrote: On Tue, Apr 15, 2014 at 07:40:41AM -0400, Stefan Berger wrote: On 04/15/2014 04:29 AM, Daniel P. Berrange wrote: On Mon, Apr 14,

Re: [libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

On 04/08/2014 11:37 AM, Daniel P. Berrange wrote: Currently we have three places which interact with the firewall - util/virebtables - simple MAC filtering used by QEMU driver - util/viriptables - used by network driver - nwfilter - general purpose guest filtering Oh my, so much

[libvirt] [PATCH 00/26] Rewrite firewall code to use formal API

Currently we have three places which interact with the firewall - util/virebtables - simple MAC filtering used by QEMU driver - util/viriptables - used by network driver - nwfilter - general purpose guest filtering All of these have been hacked to support firewalld by re-directing them via