apache/cloudstack
1
0
Fork 0
mirror of https://github.com/apache/cloudstack.git synced 2025-10-26 08:42:29 +01:00
Code Issues Packages Projects Releases Wiki Activity
19,838 Commits 304 Branches 324 Tags
Commit Graph

4 Commits

Author SHA1 Message Date
Anthony Xu
f1fb7c3efe in security group, CS put a rule in ebtables filter table FORWARD chain to prevent user from changing VM mac address 
util.pread2(['ebtables', '-A', vm_chain, '-i', vif, '-s', '!', vm_mac,  '-j', 'DROP'])

if user changes the VM mac address, all egress packet from the VM will be dropped, but the egress packet still contaminate the bridge cache with fake MAC,

This patch moves the rule to ebtables nat table PREROUTING chain, then the egress packet with modified MAC will not contaminate the bridge cache.

Anthony
 2013-07-30 17:04:21 -07:00
David Nalley
d630fa8697 license header changes for scripts folder from Chip Childers 2012-06-23 00:58:00 -04:00
Salvatore Orlando
e72b61eccc CS-14900: 
CS-14902: Fixing ovs-vif-flows.py for avoiding it kicks in with exp backoff timeouts if ovs is not running

Also removing unnecessary copies of the same script
 2012-05-17 16:09:11 +01:00
Salvatore Orlando
e2cc2c1f6e Fixing remaining issues with per-VIF flow script and removing version-specific scripts. 
Now generating XSnetwork names using gre keys

Plus other minor corrections
 2012-04-23 22:32:52 +01:00