Hi, all! I still suffer from my REJECT-target problem. I meanwhile tried a 2.4.13 kernel + ac7 patch + bridge0.0.3 patch and still there are no icmp-packets sent when using REJECT-target.
i have set this rules (beneath others) - they should block all traffic passing the brige and send out reject-packets to every sender (in my opinion): Chain FORWARD (policy ACCEPT 14 packets, 1624 bytes) pkts bytes target prot opt in out source destination 2216 237K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED 155 16117 Iall all -- eth0 eth1 0.0.0.0/0 0.0.0.0/0 Chain Iall (1 references) pkts bytes target prot opt in out source destination 44 4361 LOG all -- * * 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 4 prefix `Iall(Ext to INT)' 44 4361 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable the packet counter increases but there are no reject-packets. could anybody just try this? cu. Tim _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
