9ad9b84839
The Linux Bridge in between the VM TAP interface and OVS should [1][2]: - Reply only if the target IP address is local address configured on the incoming interface. - Always use the best local address. [1]http://kb.linuxvirtualserver.org/wiki/Using_arp_announce/arp_ignore_to_disable_ARP [2]http://linux-ip.net/html/ether-arp.html#ether-arp-flux Change-Id: I8721b680bbd9f59a67bd8e6855ffb291c208cdb8 Closes-Bug: #1825888
9 lines
350 B
YAML
9 lines
350 B
YAML
---
|
|
security:
|
|
- |
|
|
Prevent Linux Bridge from replying to ARP messages. It should reply only if
|
|
the target IP address is a local address configured on the incoming
|
|
interface and it should always use the best local address. See `The ARP
|
|
flux problem <http://linux-ip.net/html/ether-arp.html#ether-arp-flux>`_ for
|
|
more information.
|