Hi Stephen, On 08/25/2011 05:44 PM, Stephen Hemminger wrote: > What about using netfilter (with extensions)? We already have iptables > module to match on uid or gid. It wouldn't be hard to extend this to > other bits of meta data like originating and target containers. >From reading the man pages the "owner" extension of netfilter would only allow to match on outgoing traffic. Would it be possible to extend this to also match on incoming traffic? Sorry to be completely ignorant here. thanks, daniel _______________________________________________ Containers mailing list Containers@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linux-foundation.org/mailman/listinfo/containers
