External/libvirt
1
0
Fork 0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2024-12-22 05:35:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

nwfilter: fix typing error in filter

Browse Source 
Fix a typing error in the no-ip-spoofing filter.
Return DHCP request packets passing through this filter. Have
the user use another filter to actually allow DHCP requests to be
sent (action='accept').
This commit is contained in:
Stefan Berger 2012-01-17 12:47:41 -05:00 committed by Stefan Berger
parent 450c927d9a
commit af5594c88b
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
examples/xml/nwfilter/no-ip-spoofing.xml
View File

@ -1,7 +1,7 @@
<filter name='no-ip-spoofing' chain='ipv4-ip' priority='-710'>
<!-- allow DHCP requests -->
<rule action='accept' direction='out' priority='100'>
<ip srcipaddr='0.0.0.0' protocol='udp' srcportstart='68' srcportend='68'/>
<!-- allow UDP sent from 0.0.0.0 (DHCP); filter more exact later -->
<rule action='return' direction='out' priority='100'>
<ip srcipaddr='0.0.0.0' protocol='udp'/>
</rule>
<!-- allow all known IP addresses -->