Hi,
bridge-nf 0.0.4 is available. This is a patch against the stock 2.4 kernel
that makes it possible to use netfilter in combination with bridging.
Differences from 0.0.3:
- Get rid of nf_hook_slow_thresh.
- Get rid of sk_buff->realindev.
- Get rid of sk_buff->orig{src,dst}addr.
- Don't call ipv4_sabotage for packets we injected ourselved.
- Don't call PF_INET/PRE_ROUTING twice for locally destined packets.
- No longer export ip_forward as we no longer need it.
- Make bridge-nf an experimental config option
- Introduce bridge_parent macro, thereby cleaning up a lot of code.
- Macro-ise interfaces for detecting NAT.
- Change LOG target format.
- Remove obsolete LL header copy code.
- Check if iph pointer changed in pre_routing.
- Don't do our netfilter tricks on packets that come from a raw socket.
- Fix DNAT idiocy.
Currently, the only outstanding known problem is that REJECT with icmp
packets currently doesn't work (report by Tim Skopnik). I had promised
to fix it for 0.0.4, but an annoying cold has been bugging me the last
few days and I didn't quite make it. Sorry! I've postponed it to 0.0.5.
cheers,
Lennert
_______________________________________________
Bridge mailing list
[EMAIL PROTECTED]
http://www.math.leidenuniv.nl/mailman/listinfo/bridge
