[ovs-dev] [PATCH 1/2] ovn-northd: LR respond ARP from valid subnet only.
Ben Pfaff
blp at ovn.org
Tue Aug 21 18:36:34 UTC 2018
On Sun, Aug 19, 2018 at 10:27:30PM -0700, Han Zhou wrote:
> Currently ovn LR datapath responds ARP requests even if the ARP
> requestor's src IP doesn't belong to the LR port's subnets. This
> may generate unnecessary ARP responses and there could also be
> security concerns. This patch restricts the ARP response only if
> the requestor's IP matches the LR port's subnets.
>
> Signed-off-by: Han Zhou <hzhou8 at ebay.com>
Thanks, this series seems fine and the tests pass, so I applied it to
master.
More information about the dev
mailing list