Hello. I made some progress on my broute issue... Now, I am able to see in syslog file incoming packets with VLAN info included. The ebtable rule I'm using is: # ebtables -t broute -A BROUTING -i eth0 -p 802_1Q --vlan-encap IPV4 -j redirect --redirect-target DROP --log-level DEBUG (eth0 interface is added to bridge br0) The problem that I have now is that packets with VLAN_ID other than 0 are not brouted to the iptables layer. Instead, any incoming packet with VLAN_ID = 0 is brouted to the iptables layer successfully. Somehow, ebtables is dropping those packets, I do not know why. They are logged to the syslog fiel successfully, but they are not sent to the iptables layer. Do you have any idea why packets not having VLAN_ID = 0 are dropped by ebtables? Is there any way to enable additional logging on ebtables so that the reason for dropping packets is dumped out? Thanks. -Bob -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
