[libvirt] How to prevent libvirt from adding iptables rules?
Ludwig Nussel
ludwig.nussel at suse.de
Tue Apr 7 09:07:46 UTC 2009
David Lutterkort wrote:
> On Mon, 2009-04-06 at 14:36 +0200, Ludwig Nussel wrote:
> > SuSEfirewall2 does not have such a mechanism and TBH I pretty much
> > dislike the idea of allowing applications to inject arbitrary rules.
> > I'd prefer some higher level abstraction so it's left to the
> > firewall to decide how to translate the request into actual iptables
> > rules (or whatever else technology is used in the background).
>
> How would that be done ? I don't know of any tool that could do that,
Such a mechanism doesn't exist yet. That doesn't mean it can't be
implemented in the future.
cu
Ludwig
--
(o_ Ludwig Nussel
//\
V_/_ http://www.suse.de/
SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg)
More information about the libvir-list
mailing list