> Yes, this is exactly what I need! I tried: > > ifconfig dummy0 down # current holder of IP 192.168.1.42 > ip link add name veth0 type veth peer name veth1 > ifconfig veth0 192.168.1.42 up > ping 192.168.1.42 # just checking :-) > brctl addif br0 veth1 > iptables -A INPUT -i veth0 -j ACCEPT > ping 192.168.1.43 > > but the ping still did not work. I also ACCEPTed traffic on veth1 and > br0 but no difference. I'll flush all tables and do some more reading > and gooling, but that must all wait till this evening. Is veth1 up? (Maybe you need "ifconfig veth1 up".) You shouldn't need the iptables line unless you have other iptables stuff that might potentially block it. And there are some emails on the web referring to issues with iptables conntrack and veth. _______________________________________________ Bridge mailing list Bridge@xxxxxxxxxxxxxxxxxxxxxxxxxx https://lists.linux-foundation.org/mailman/listinfo/bridge
