[virt-tools-list] iptables rate limiting for bridged connection (kvm created bridge)
Tapas Mishra
mightydreams at gmail.com
Wed Oct 27 20:06:12 UTC 2010
On Wed, Oct 27, 2010 at 11:01 PM, Daniel P. Berrange
<berrange at redhat.com> wrote:
> That isn't quite correct actually.
>
> The /etc/init.d/network script will make multiple passes over
> the ifcfg-* files. The first time around it will bring up
> phsyical interfaces, and the scond time it will process
> bridge interfaces. Within each pass, things are alphabetical.
> So you don't need to worry about alphabetical ordering of
> physical NICs vs bridge interfaces.
>
>> For bridges that want to add an already working interface, the bridge
>> needs to be created after the interface comes up.
>>
>> We usually create ifcfg-zbr0 with br0 defined inside it. That way eth0
>> comes up and then gets added to the new bridge br0.
>>
>> Like this:
>>
>> # cat ifcfg-zbr0
>> DEVICE=br0
>> ONBOOT=yes
>> TYPE=BRIDGE
>> BOOTPROTO=none
>
> I think this probably explains why it didn't work - you need
> to have TYPE=Bridge, rather than TYPE=BRIDGE,because the
> network initscript is case sensitive when processing the
> TYPE field in ifcfg-XXX files.
>
I want to know when I rate limiting via IPTABLES then in place of
interface if I need to specify bridge then how do I do that?
More information about the virt-tools-list
mailing list