+ # set the same mtu for ovs int port
+ PVE::Tools::run_command("/sbin/ifconfig $ovsintport mtu $bridgemtu");
+
+ &$bridge_add_interface($fwbr, $ovsintport);
+};
+
+my $cleanup_firewall_bridge = sub {
+ my ($iface) = @_;
+
+ my ($vmid, $devid) = &$parse_tap_devive_name($iface);
+ my ($fwbr, $vethfw, $vethfwpeer, $ovsintport) = &$compute_fwbr_names($vmid, $devid);
+
+ # cleanup old port config from any openvswitch bridge
+ if (-d "/sys/class/net/$ovsintport") {
+ run_command("/usr/bin/ovs-vsctl del-port $ovsintport", outfunc => sub {}, errfunc => sub {});
+ }
+
+ # delete old vethfw interface
+ if (-d "/sys/class/net/$vethfw") {
+ run_command("/sbin/ip link delete dev $vethfw", outfunc => sub {}, errfunc => sub {});
+ }
+
+ # cleanup fwbr bridge
+ if (-d "/sys/class/net/$fwbr") {
+ run_command("/sbin/ip link set dev $fwbr down", outfunc => sub {}, errfunc => sub {});
+ run_command("/sbin/brctl delbr $fwbr", outfunc => sub {}, errfunc => sub {});
+ }
+};
+
+sub tap_plug {
+ my ($iface, $bridge, $tag, $firewall) = @_;
+
+ #cleanup old port config from any openvswitch bridge
+ eval {run_command("/usr/bin/ovs-vsctl del-port $iface", outfunc => sub {}, errfunc => sub {}) };
+
+ if (-d "/sys/class/net/$bridge/bridge") {
+ &$cleanup_firewall_bridge($iface); # remove stale devices
+
+ my $newbridge = activate_bridge_vlan($bridge, $tag);
+ copy_bridge_config($bridge, $newbridge) if $bridge ne $newbridge;
+
+ $newbridge = &$create_firewall_bridge_linux($iface, $newbridge) if $firewall;
+
+ &$bridge_add_interface($newbridge, $iface);
+ } else {
+ &$cleanup_firewall_bridge($iface); # remove stale devices
+
+ if ($firewall) {
+ &$create_firewall_bridge_ovs($iface, $bridge, $tag);
+ } else {
+ &$ovs_bridge_add_port($bridge, $iface, $tag);
+ }
+ }