Hi!
there was a misunderstanding: "filter" I mean "recognize". I don't want
to drop packets in postrouting, I know it is impossible, but I need to
recognize in postrouting packet of a certain source (by mac address, not
by ip).
I don't know when packets source mac address is modified by router.
Thanks,
Fabio
Hi Fabio,
I don't think you can filter packets in postrouting.
The only tables available in POSTROUTING are mangle and nat.
To filter packets in a router, I think you have to do it in the FORWARD
chain.
see: http://jengelh.medozas.de/images/nf-packet-flow.png
Julien
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
