Grant Taylor a écrit : > On 08/20/10 05:26, Pascal Hambourg wrote: >> Hasn't anybody ever created a bridge with only one interface just in >> order to be able to use ebtables on this interface ? > > I'd be very surprised if someone somewhere has not done that. > > I would think that it would be a very special use case scenario where > you needed to do something in EBTables that couldn't be done in IPTables > / ARPTables. Ethernet does not carry only IP and ARP. There are other protocols in use out there. One may want to do MAC-based filtering and mangling on normal ethernet interfaces. IMO restricting ebtables to bridges would be like restricting iptables to routers. -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
