projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b2bfb57) | patch
openvswitch: add option for failure mode
authorStijn Tintel <stijn@linux-ipv6.be>
Tue, 21 Sep 2021 11:58:15 +0000 (14:58 +0300)
committerYousong Zhou <yszhou4tech@gmail.com>
Thu, 23 Sep 2021 01:15:34 +0000 (09:15 +0800)
commit9e45d4534807d372cbb22b1fa734b4d79b42a8a9
treeaf1632cf158fe88b907daace84f5bed62654394ctree | snapshot
parentb2bfb572a33401bd9437ce84ff53aba0da74d742commit | diff
openvswitch: add option for failure mode

When Open vSwitch is configured to use a controller, but is unable to
connect to it, Open vSwitch will setup flows to allow all traffic, if
the failure mode is not configured, or set to standalone.

As this might be a security hazard, it is also possible to configure
Open vSwitch in a secure failure mode. Enabling this mode causes Open
vSwitch to drop all traffic if it is unable to connect to the
controller.

Redirect stderr of the command to /dev/null as it does not support the
--if-exists option.

Signed-off-by: Stijn Tintel <stijn@linux-ipv6.be>
net/openvswitch/Makefile diff | blob | history
net/openvswitch/README.md diff | blob | history
net/openvswitch/files/openvswitch.config diff | blob | history
net/openvswitch/files/openvswitch.init diff | blob | history
Mirror of packages feed