> Hi,
> I applied the kernel patches from http://ac2i.tzo.com/bridge_filter/
> to 2.2.10 kernel source to enable IP filtering when bridging.
> It works very well with ACCEPT and DENY. In an attempt to make it
> also work with REJECT (send back a dest unreachable ICMP message)
> Would any of you experts like to comment? Is it possible to achieve
> what I'm trying?
I don't think so. Since you do bridging you are not a router and you
cannot send back a reject (the sending host expects to talk to someone on
the same network).
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/