I'm trying to do some DHCP/ARP filtering here on my little router running OpenWRT svn-rev. 15336. When I'm trying to insert a rule like this: "ebtables -A INPUT --in-interface bat0 --protocol IPv4 --ip-protocol udp --ip-source-port 68 -j DROP" then I get the following reply: "The kernel doesn't support a certain ebtables extension, consider recompiling your kernel or insmod the extension." And in dmesg: "eb_tables: ip match: invalid size 32 != 28" A rule like "ebtables -I INPUT --in-interface bat0 --protocol ARP -j DROP" results in the dmesg output "eb_tables: standard target: invalid size 8 != 4". The error posted on this mailing-list seems to be similar: http://osdir.com/ml/linux.network.bridge.ebtables.devel/2006-12/msg00001.html Is this a bug in ebtables in general (or related to my OpenWRT firmware)? Is ebtables an active project at the moment anyway? Seems like the last bugfixes have been quite a long time ago. But as far as I know, I can't use iptables with physdev to filter ARP for example. Cheers, Linus
Attachment:
signature.asc
Description: Digital signature
