Re: bridging and IP-filtering

Petru Paler (ppetru@hip.ro)
Mon, 19 Jul 1999 17:43:32 +0300 (EEST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Rui Sousa: "ABIT BH6 problems"
Previous message: Michael Vogt: "[patch] scsi-removeable devices"
Next in thread: Riccardo Facchetti: "Re: [patch] scsi-removeable devices"
Reply: Riccardo Facchetti: "Re: [patch] scsi-removeable devices"

On Mon, 19 Jul 1999, Chris Osicki wrote:

> Hi,
>
> I applied the kernel patches from http://ac2i.tzo.com/bridge_filter/
> to 2.2.10 kernel source to enable IP filtering when bridging.
> It works very well with ACCEPT and DENY. In an attempt to make it
> also work with REJECT (send back a dest unreachable ICMP message)

[snip]

> Would any of you experts like to comment? Is it possible to achieve
> what I'm trying?

I don't think so. Since you do bridging you are not a router and you
cannot send back a reject (the sending host expects to talk to someone on
the same network).

-Petru

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rui Sousa: "ABIT BH6 problems"
Previous message: Michael Vogt: "[patch] scsi-removeable devices"
Next in thread: Riccardo Facchetti: "Re: [patch] scsi-removeable devices"
Reply: Riccardo Facchetti: "Re: [patch] scsi-removeable devices"