Actions
Task #8435
open
VJ
OD
firewall: investigate handling of encapsulation/tunneling like GRE/VXLAN
Task #8435:
firewall: investigate handling of encapsulation/tunneling like GRE/VXLAN
Description
These packets lead to several internal packets that are connected for the verdict. The rule language is not aware of this though.
First step would be to create a test for these cases:- VXLAN
- Geneve
- GRE
- IP in IP
- etc
We may want to disallow things like IP in IP globally or in a ruleset.
VJ Updated by Victor Julien 3 months ago
- Related to Feature #8334: firewall: allow matching on packet layers added
VJ Updated by Victor Julien 3 months ago
- Related to Task #7269: firewall: comprehensive rules tests added
JI Updated by Jason Ish about 1 month ago
- Status changed from New to Triaged
- Assignee set to OISF Dev
Actions