Re: [libvirt] Libvirt, nwfilter, openvswitch
2013/11/12 Laine Stump <laine(a)laine.org>:
Because it's terribly inefficient.
You may, on the other hand, view it as "clever", because it is able to
work around deficiencies in the individual components to make something
that works at all. It certainly is true, though, that a lot of cycles
are being wasted on each packet's trip through all that network linkage,
and it would sure be nice if that waste could be avoided.
May be the best way to create minimal daemon that able to talk via rpc
with libvirt and have backends for nwfilter and openflow. Each rule it
translate to needed rules..
--
Vasiliy Tolstov,
e-mail: v.tolstov(a)selfip.ru
jabber: vase(a)selfip.ru