On 5/22/07 10:09 AM, "Grant Taylor" <gtaylor@xxxxxxxxxxxxxxxxx> wrote: > On 05/22/07 09:35, Robert LeBlanc wrote: >> You will need to look at ebtables. Bridging will bypass iptables. Ebtables >> is much like iptables, but there are some subtle differences that may choke >> you up. Haven't worked much with it though. > > You can configure the kernel to apply IPTables Net Filters (Layer 3) to > EBTables bridged (Layer 2) traffic. > > To quote the (2.6.8.1) kernel source: > """ > CONFIG_BRIDGE_NETFILTER - Enabling this option will let arptables resp. > iptables see bridged ARP resp. IP traffic. If you want a bridging > firewall, you probably want this option enabled. > > Enabling or disabling this option doesn't enable or disable ebtables. > """ > > > > > Grant. . . . > Thanks, I wasn't aware of this option as I haven't done much with bridging since I had lots of trouble with trying to bridge and NAT on the same network (use allow the same physical network after my linux gateway to carry my public network and the NATed private network). I will have to look into it again, this option may have been a cause of some of my issues. Robert LeBlanc BioAg Computer Support Brigham Young University leblanc@xxxxxxx (801)422-1882
