From c312c8998c9da003fb3d30bd14827297b7402ae3 Mon Sep 17 00:00:00 2001 From: Laine Stump Date: Sun, 16 Feb 2020 22:54:45 -0500 Subject: [PATCH] docs: add info about to news file MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit Signed-off-by: Laine Stump Reviewed-by: Ján Tomko --- docs/news.xml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) diff --git a/docs/news.xml b/docs/news.xml index 5aa9d081a7..f6c4d6a78d 100644 --- a/docs/news.xml +++ b/docs/news.xml @@ -82,6 +82,27 @@ "type" and "persistent" attributes. + + + support BR_ISOLATED flag for guest interfaces attached to a Linux host bridge + + + Since Linux kernel 4.18, the Linux host bridge has had a + flag BR_ISOLATED that can be applied to individual + ports. When this flag is set for a port, traffic is blocked + between that port and any other port that also has the + BR_ISOLATED flag set. libvirt domain interface config now + supports setting this flag via the <port + isolated='yes'/> setting. It can also be set for all + connections to a particular libvirt network by setting the + same option in the network config - since the port for the + host itself does not have BR_ISOLATED set, the guests can + communicate with the host and the outside world, but guests + on that network can't communicate with each other. This + feature works for QEMU and LXC guests with interfaces + attached to a Linux host bridge. + + qemu: Introduce the 'armvtimer' timer type -- 2.47.2