Hi, >Would the following work >ebtables -A INPUT -i eth0.10 -o eth1 -j DROP <-------- Block >eth0.10 vlan from sending traffic to eth1 >ebtables -A INPUT -i eth0.+ -o eth1 -j DROP <------ BLock all >vlans from sending traffic to eth1 That was an error on my end. I should have written "You should probably filter traffic on that bridge and allow ONLY eth0.x <-> eth1". You can achieve this with following rule: ebtables -A FORWARD -i eth0.+ -o eth0.+ -j DROP Default policy is accept, so only specified traffic will be filtered.On Best regards, Marek Kierdelewicz -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
