Hi,
bridge-nf-0.0.4-pre1 is available. This is an experimental release, more
experimental than the previous ones, so please treat with care. For one,
the LOG target log format has changed; this was done in the hope of not
breaking existing (non-bridging-iptables-only) parsers.
There is quite some new code in here, and I would be interested in hearing
success reports and bug reports. I'm particularly interested in 64 bit
platform reports, and occurrences of 'br_nf_pre_routing_finish: shouldn't
happen!' in people's syslogs.
The next steps will be to fix DNAT handling for some weird corner cases,
and to sort out the issue with multicast/broadcast packets that was reported
to the list (which is hindered by the fact that DaveM hasn't responded to my
patch emails for two weeks now..)
cheers,
Lennert
List of changes:
- no longer export ip_forward as we no longer need it
- get rid of nf_hook_slow_thresh, use nf_hook_slow instead
- get rid of sk_buff->realindev; was never really necessary. also get rid of
sk_buff->orig{src,dst}addr, use control buffer instead. the code now only
uses 8 extra bytes in the sk_buff (16 for 64bit platforms), instead of the
former 20 (40, respectively)
- don't call IP/PRE hook twice for locally destined packets
- don't call ipv4_sabotage for packets we injected ourselves
- make bridge-nf an experimental config option
- introduce bridge_parent macro, thereby cleaning up a bunch of code
- macro-ise interfaces for detecting NAT
- change LOG target format
- remove obsolete LL header copy code
_______________________________________________
Bridge mailing list
[EMAIL PROTECTED]
http://www.math.leidenuniv.nl/mailman/listinfo/bridge
