[ovs-dev] [PATCH] FAQ: Mention conntrack capability for packet filtering.
Han Zhou
zhouhan at gmail.com
Fri Oct 28 19:13:44 UTC 2016
The exiting explanation didn't tell user the conntrack capability
and user may be unaware of the stateful feature of OVS.
Signed-off-by: Han Zhou <zhouhan at gmail.com>
---
FAQ.md | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/FAQ.md b/FAQ.md
index 420e40e..776b8f6 100644
--- a/FAQ.md
+++ b/FAQ.md
@@ -874,8 +874,9 @@ A: It depends on mechanisms and configurations you want to use.
is also where you would add an IP address, as discussed elsewhere
in the FAQ.)
- For simple filtering rules, it might be possible to achieve similar
- results by installing appropriate OpenFlow flows instead.
+ To acheive similar results of packet filter mechanism like iptables,
+ conntrack feature can be utilized by installing appropriate OpenFlow
+ flows.
If the use of a particular packet filter setup is essential, Open
vSwitch might not be the best choice for you. On Linux, you might
--
2.1.0
More information about the dev
mailing list