Pablo Neira Ayuso wrote:
Patrick McHardy wrote:
Well, a cast should "fix" that :) But feel free to suggest a
better method that doesn't need to expose this as a standalone
feature.
Hm, I forgot another point that is the fact that the PKTTYPE target is
not always required. Actually, if the switch can flood the same packets
to a set of nodes that are part of the cluster via "port mirroring" or
if the switch interprets the VRRP reserved MAC address range correctly
(I did not find any yet), the nodes in the cluster would not need to use
with a multicast MAC address, in that case, the PKTTYPE target would not
be required.
Well, I'll do the hackish solution if that relieves the possible extra
bloat of one target that indeed only has this purpose ;). I'll send you
a new version of the patch asap.
Yeah, its a bit hackish too. Ideally we find a cleaner way, but the
best I could come up with (use MACVLAN to make the multicast address
handled as unicast) isn't any cleaner itself.
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
