Hi All, Can anybody suggests how can I disable netfilter for bridged traffic in linux-2.4.27 kernel ? Thanks and Regards, Senthil
senthil wrote:> Hi All, > Can anybody suggests how can I disable netfilter for bridged traffic in > linux-2.4.27 kernel ?If i understand the question, then you just need to ignore the interfaces for the bridge. iptables -I FORWARD -i eth_bridge_1 -j RETURN iptables -I FORWARD -i eth_bridge_2 -j RETURN iptables -I FORWARD -i bridge -j RETURN same for input and output if you don''t need a firewall for the ip address assigned on the bridge interface or you don''t have an ip address assigned.
On Saturday 06 January 2007 15:30, Radu Oprisan wrote:> senthil wrote: > > Hi All, > > Can anybody suggests how can I disable netfilter for bridged traffic in > > linux-2.4.27 kernel ? > > If i understand the question, then you just need to ignore the > interfaces for the bridge.this is not necesary cause bridged traffic is "layer 2" traffic, and there is not a chance that netfiter(layer 3) saw it. There is ebtables and iptables "physdev" in 2.6, to filter bridged traffic. -- Luciano
Luciano Ruete wrote:> On Saturday 06 January 2007 15:30, Radu Oprisan wrote: >> senthil wrote: >>> Hi All, >>> Can anybody suggests how can I disable netfilter for bridged traffic in >>> linux-2.4.27 kernel ? >> If i understand the question, then you just need to ignore the >> interfaces for the bridge. > > this is not necesary cause bridged traffic is "layer 2" traffic, and there is > not a chance that netfiter(layer 3) saw it. > > There is ebtables and iptables "physdev" in 2.6, to filter bridged traffic.I''m sorry. I missed the part about 2.4.27 in the first message.