Hello. I have tested again and the default policy for INPUT, FORWARD and OUTPUT is DROP also there is a single rule matching anything as source and anything as destination with action DROP also "cat /proc/sys/net/ipv4/ip_forward " says "0" The connecting machine has a single cable to my bridge, so there is no other way to go trough the net. But netfilter does not stop the trafic!!! i tried with a stock debian 2.4.25 kernel, and a 2.4.25 kernel comiled in house. I have already used bridge + iptables with 2.4.19 kernel, so i know how it should work. some help or know bugs?? is someone used bridge + netfilter on a 2.4.25 kernel and it works please write me! thanks. IVan ________________________________________________ Kaixo! (http://www.kaixo.com) Portal de Euskadi - Euskadiko ataria
