Re: [PATCH net] bridge: ebtables: fix reception of frames DNAT-ed to bridge device

From: Pablo Neira Ayuso
Date: Wed Mar 15 2017 - 14:17:03 EST

Next message: Heiko Stuebner: "Re: [PATCH v2 2/4] pinctrl: rockchip: convert to raw spinlock"
Previous message: Gabriel L. Somlo: "Re: [PATCH] kvm: better MWAIT emulation for guests"
In reply to: Linus LÃssing: "Re: [PATCH net] bridge: ebtables: fix reception of frames DNAT-ed to bridge device"
Next in thread: Linus LÃssing: "Re: [PATCH net] bridge: ebtables: fix reception of frames DNAT-ed to bridge device"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Mar 15, 2017 at 03:27:20PM +0100, Linus Lüssing wrote:
> On Wed, Mar 15, 2017 at 11:42:11AM +0100, Pablo Neira Ayuso wrote:
> > I'm missing then why redirect is not then just enough for Linus usecase.
>
> For my usecase, the MAC address is configured by the user from a
> Web-UI. It may or may not be the one from the bridge device.
>
> Besides, found it counter intuitive that DNAT did not work here
> and took me some time to find out why. At least I didn't read about
> any such known limitations of the dnat target in the ebtables
> manpage.

Could you update ebtables dnat to check if the ethernet address
matches the one of the input bridge interface, so we mangle the
->pkt_type accordingly from there, instead of doing this from the
core?

Next message: Heiko Stuebner: "Re: [PATCH v2 2/4] pinctrl: rockchip: convert to raw spinlock"
Previous message: Gabriel L. Somlo: "Re: [PATCH] kvm: better MWAIT emulation for guests"
In reply to: Linus LÃssing: "Re: [PATCH net] bridge: ebtables: fix reception of frames DNAT-ed to bridge device"
Next in thread: Linus LÃssing: "Re: [PATCH net] bridge: ebtables: fix reception of frames DNAT-ed to bridge device"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]