On Sun, Oct 07, 2018 at 12:09:18AM +0900, Taehee Yoo wrote: > TEE netdevice notifier handler checks only interface name. however > each netns can have same interface name. hence other netns's interface > could be selected. > > test commands: > %ip netns add vm1 > %iptables -I INPUT -p icmp -j TEE --gateway 192.168.1.1 --oif enp2s0 > %ip link set enp2s0 netns vm1 > > Above rule is in the root netns. but that rule could get enp2s0 > ifindex of vm1 by notifier handler. > > After this patch, TEE rule is added to the per-netns list. Applied, thanks!
