Hi Guys The following patch-set adds ebtables nflog support to ulogd. In order to have this work it's also necessary to apply the ebtables and kernel patches I posted some time ago (i posted as well as this post on both, ebtables and netfilter devel lists). Those patches add both ebt_nflog kernel module and userland module. However the patches can certainly be applied separately. This patchset adds now the corresponding support to ulogd's BASE, PRINTPKT and IP2STR modules. Currently it interprets the AF_BRIDGE family and knows to differentiate IP and ARP header and log them accordingly. Here is a sample log output: Feb 11 20:56:30 efw-1201175446 ulogd[10972]: EBTABLES TEST IN=br0 OUT= \ MAC=00:0c:e0:e0:7d:62:ff:ff:08:00:0c:00 SRC=10.7.100.2 DST=10.7.222.22 \ PROTO=ARP REQUEST Feb 11 20:56:31 efw-1201175446 ulogd[10972]: EBTABLES TEST IN=br0 OUT= \ MAC=00:0c:e0:e0:7d:62:ff:ff:08:00:0c:00 SRC=10.7.100.2 DST=10.7.222.22 LEN=84 \ TOS=00 PREC=0x00 TTL=64 ID=0 DF PROTO=ICMP TYPE=8 CODE=0 ID=10541 SEQ=0 Feb 11 20:56:35 efw-1201175446 ulogd[10972]: EBTABLES TEST IN=br0 OUT= \ MAC=00:0c:e0:e0:7d:62:ff:ff:08:00:0c:00 SRC=10.7.100.2 DST=10.7.222.22 \ PROTO=ARP REPLY REPLY_MAC=00:0c:e0:e0:7d:62 More protocols *could* be implemented later. kind regards, Peter -- - To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
