[libvirt] Re: Libvirt, nwfilter, openvswitch
Nicolas Sebrecht
nsebrecht at piing.fr
Tue Nov 12 09:10:47 UTC 2013
The 07/11/13, Daniel P. Berrange wrote:
> There's no support for nwfilter at all when using openvswitch, due to
> the kernel limitations you mention. The (disgusting) way openstack deals
> with this is to create a traditional bridge per vm so you have
>
>
> phys nic <-> openvswitch
> \---> vm bridge <-> vm tap dev
> \---> vm bridge <-> vm tap dev
> \---> vm bridge <-> vm tap dev
Why is it "disgusting"?
--
Nicolas Sebrecht
More information about the libvir-list
mailing list