On 22/08/10 10:09, Jan Engelhardt wrote:
On Sunday 2010-08-22 11:05, Jonathan Tripathy wrote:
Setting net.ipv4.conf.<interface>.forwarding=0 will disable forwarding
of IP packets received on<interface>. But I'm afraid it won't disable
all IP operation on it (ARP resolution, accept IP packets for local
delivery...)
Just out of interest, if routing was enabled on the Dom0, how would
the guests be able to use it,
Well, by means of `ebtables -t broute -j DROP` which causes packets
to be routed instead of bridged.
Assuming that all IPs for the other
interfaces on the Dom0 were on a different subnet..
Ah right, but something would have to "make it" do that? (i.e. your ebtables
broute example above)
As I said.
And as previously mentioned, routing does not usually care about addresses,
but routes (`ip r`).
I'm sorry I don't really follow. Are you saying that there is no way to
disable IP forwarding in a Linux box?
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
