[ovs-discuss] Flow table - Allow FTP

Jesse Gross jesse at nicira.com
Mon Mar 22 17:43:07 UTC 2010


There is no support for ranges or any operator other than equals.  You can
allow traffic on both ports for FTP but there is no support for tracking
related connections.

What you have to understand is that the flow table is designed for network
engineering, not for applying ACLs.  While there is some overlap, there is
no general support for ACLs.  You should refer to the ovs-ofctl man page.
 Anything not listed there is not supported.

On Sat, Mar 20, 2010 at 6:19 AM, <devang.vyas at aol.in> wrote:

> Hi,
>
> Currently I dont find any way to allow specific TCP/UDP port range in flow
> table. Also I can not use operator other than "=" for *tp_src* and *tp_dst
> *in "ovs-ofctl add-flow". How should I configure to switch to allow FTP
> connections?
>
> Thanks,
> DV
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://openvswitch.org/pipermail/ovs-discuss/attachments/20100322/ba3c33d2/attachment-0001.html>


More information about the discuss mailing list