On Sunday 2010-08-22 11:05, Jonathan Tripathy wrote: >>>>> >>>> Setting net.ipv4.conf.<interface>.forwarding=0 will disable forwarding >>>> of IP packets received on<interface>. But I'm afraid it won't disable >>>> all IP operation on it (ARP resolution, accept IP packets for local >>>> delivery...) >>>> >>> Just out of interest, if routing was enabled on the Dom0, how would >>> the guests be able to use it, >>> >> Well, by means of `ebtables -t broute -j DROP` which causes packets >> to be routed instead of bridged. >> >>> Assuming that all IPs for the other >>> interfaces on the Dom0 were on a different subnet.. > > Ah right, but something would have to "make it" do that? (i.e. your ebtables > broute example above) As I said. And as previously mentioned, routing does not usually care about addresses, but routes (`ip r`). -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
