Displaying 2 results from an estimated 2 matches for "nf_br_pri_nat_src".
2007 Apr 18
0
[Bridge] priority number lower??
...0x828 -j DROP !!DOES NOT WORK!!
ebtables -A INPUT -p 0x800 -j DROP !!WORKS!!
Group members told me that:
> What you need to do is register your function
> on the existing NF_BR_PRE_ROUTING hook, with a priority number lower than
> that of the ebtables nat PREROUTING chain (prio=NF_BR_PRI_NAT_SRC).
ebt INPUT
|
|
ebt (PREROUTING)------Bridging-----ebt (FORWARD)
I think my code is decapsulating (changing eth hdr) before INPUT chain
is traversed. So, I am confused as to what the priority number should
be.
Since encap/ decap functions are called by main code. If the prio is
Lo...
2007 Apr 18
2
[Bridge] bridge netfilter question
Hi,
I found this block of code in br_dev_queue_xmit() @
br_forward.c, after applying 'netfilter' patch for
2.4.21 kernel
Can someone explain what this block of code is doin?
#ifdef CONFIG_NETFILTER
if (skb->nf_bridge)
memcpy(skb->data - 16,
skb->nf_bridge->hh, 16);
#endif
1. What is 16 bytes here...? Ethernet hdr is just 14
bytes
2. Why the ethernet