>>Sorry, I used a bad choice of words - Would ebtables stop the frame reaching >> the remote host (VM in my case) is what I meant to say:) >No. The two bridges are not connected to another in the first place, >so the only way for a packet to come in on br0 and go out on br1 is >routing, for which iptables is needed to filter.
But even without iptables, traffic coudn't cross without a router in the middle, right?
BTW, my post above wasn't really related to having 2 bridges, but more of the "dumb hub" situation.
Cheers -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
