From: Dan Smith <danms@xxxxxxxxxx> Date: Thu, 25 Feb 2010 12:43:15 -0800 > This has an small hidden gotcha. Since the macvlan device is moved > completely into a container's network namespace, the init netns cannot > freeze traffic to and from it in order to migrate live network connections > by simply utilizing its netfilter tables. A helper process in the container > or something like what was recently discussed on the containers list[1] > would provide a way to do this. > > [1]: https://lists.linux-foundation.org/pipermail/containers/2010-February/023001.html > > Signed-off-by: Dan Smith <danms@xxxxxxxxxx> Acked-by: David S. Miller <davem@xxxxxxxxxxxxx> _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linux-foundation.org/mailman/listinfo/containers
