From 8eb23363ec3f89792c638c72832ff99ae5ec8169 Mon Sep 17 00:00:00 2001 Message-Id: <8eb23363ec3f89792c638c72832ff99ae5ec8169@dist-git> From: Ales Musil Date: Sun, 29 Jul 2018 16:56:18 +0200 Subject: [PATCH] examples: Add clean-traffic-gateway into nwfilters MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit The filter purpose is to simulate isolated private VLAN. The behavior can be achieved by limiting network traffic to traffic between VM and gateway. Because there is no concept of the PVLAN in the linux bridge. The filter also contains parts from clean-traffic to prevent VM from spoofing its IP and MAC address. To use this filter the user just needs to set the GATEWAY_MAC variable to gateway MAC address. Signed-off-by: Ales Musil Reviewed-by: Martin Kletzander (cherry picked from commit ac01fbc90b7eb4ccc7a6140d618d1a3859365155) https://bugzilla.redhat.com/show_bug.cgi?id=1603115 Signed-off-by: Martin Kletzander Reviewed-by: Ján Tomko --- .../xml/nwfilter/clean-traffic-gateway.xml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 examples/xml/nwfilter/clean-traffic-gateway.xml diff --git a/examples/xml/nwfilter/clean-traffic-gateway.xml b/examples/xml/nwfilter/clean-traffic-gateway.xml new file mode 100644 index 0000000000..b8c204041a --- /dev/null +++ b/examples/xml/nwfilter/clean-traffic-gateway.xml @@ -0,0 +1,34 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + -- 2.18.0