Skip to content

Commit d913e3b

Browse files
committed
security group: exactly match bridge name
1 parent 4f98bbe commit d913e3b

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

scripts/vm/network/security_group.py

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -726,7 +726,7 @@ def addFWFramework(brname):
726726
execute("iptables -I FORWARD -o " + brname + " -j DROP")
727727
execute("iptables -I FORWARD -i " + brname + " -m physdev --physdev-is-bridged -j " + brfw)
728728
execute("iptables -I FORWARD -o " + brname + " -m physdev --physdev-is-bridged -j " + brfw)
729-
phydev = execute("brctl show |grep " + brname + " | awk '{print $4}'").strip()
729+
phydev = execute("brctl show |grep -w " + brname + " | awk '{print $4}'").strip()
730730
execute("iptables -A " + brfw + " -m state --state RELATED,ESTABLISHED -j ACCEPT")
731731
execute("iptables -A " + brfw + " -m physdev --physdev-is-bridged --physdev-is-in -j " + brfwin)
732732
execute("iptables -A " + brfw + " -m physdev --physdev-is-bridged --physdev-is-out -j " + brfwout)

0 commit comments

Comments
 (0)