[libvirt PATCH 04/10] util: query/set BR_ISOLATED flag on netdevs attached to bridge

Ján Tomko jtomko at redhat.com
Mon Feb 17 06:59:59 UTC 2020


On Sun, Feb 16, 2020 at 11:22:53PM -0500, Laine Stump wrote:
>When this flag is set for an interface attached to a bridge, traffic
>to/from the specified interface can only enter/exit the bridge via
>another attached interface that *doesn't* have the BR_ISOLATED flag
>set. This can be used to permit guests to communicate with the rest of
>the network, but not with each other.
>
>Signed-off-by: Laine Stump <laine at redhat.com>
>---
> src/libvirt_private.syms   |  2 ++
> src/util/virnetdevbridge.c | 46 ++++++++++++++++++++++++++++++++++++++
> src/util/virnetdevbridge.h |  9 ++++++++
> 3 files changed, 57 insertions(+)
>
>@@ -354,6 +378,28 @@ virNetDevBridgePortSetUnicastFlood(const char *brname G_GNUC_UNUSED,
>                          _("Unable to set bridge port unicast_flood on this platform"));
>     return -1;
> }
>+
>+
>+int
>+virNetDevBridgePortGetIsolated(const char *brname G_GNUC_UNUSED,
>+                                   const char *ifname G_GNUC_UNUSED,
>+                                   bool *enable G_GNUC_UNUSED)

Indentation is off here.

>+{
>+    virReportSystemError(ENOSYS, "%s",
>+                         _("Unable to get bridge port isolated on this platform"));
>+    return -1;
>+}
>+
>+
>+int

Reviewed-by: Ján Tomko <jtomko at redhat.com>

Jano
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20200217/47e038e7/attachment-0001.sig>


More information about the libvir-list mailing list