Hello,
mopsosforum a écrit :
But I want to add another interface, eth3 on the bridge and for the
moment, drop all the packet.
I tried :
ebtables -A INPUT -i eth3 -j DROP
ebtables -A OUPUT -o eth3 -j DROP
ebtables -A FORWARD -i eth3 -j DROP
ebtables -A FORWARD -o eth3 -j DROP
But I have always some packet :
arp and msdns what always allow.
How is it possible?
Thes packets may be sent directly on eth3, not on the bridge. ebtables
sees only packets which enter the bridge.
How Can I drop this type on packet?
You can drop outgoing IP traffic on eth3 with iptables, or stop the
application or service sending this trafic from doing so.
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
