On 12/06/06 01:57, Clemens wrote:
but now my question: what are you using the is there any advantage in using iptables to filter bridged traffic as you noted in my quote above? i use ebtables to do all the filtering in the linuxbridge, and it works pretty well..
EBTables is a very good basic layer 2 filtering mechanism. However, I don't think you can do statefull matching with EBTables like you can with IPTables. By using IPTables to filter traffic for bridges, you can take advantage of all of the advanced match extensions that you can not do with EBTables. Grant. . . .
