]>
git.proxmox.com Git - pve-firewall.git/commit - PVE/Firewall.pm
basic bridge iptables implementation
./pvefw enabletaprules -netid net0 -vmid 110
./pvefw disabletaprules -netid net0 -vmid 110
sample firewall config file
---------------------------
[IN]
ACCEPT net0 - - tcp 22 -
ACCEPT net0 - - icmp - -
GROUP-securityname1 net0 - - - - - #apply security group rules
GROUP-securityname2 net0 - - icmp - - #apply security group rules on icmp only
[OUT]
ACCEPT net0 - - icmp - -
ACCEPT net0 - - tcp 80 -
GROUP-securityname2 net0 - - - - - #apply security group rules
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>