It seems like you didn't enable the bridge-netfilter patch in your kernel config.
On Wed, Dec 12, 2001 at 08:47:15AM -0500, Vance Tacco wrote: > Hi, I'm running Redhat 7.0 with the 2.4.16 kernel and netfilter patch. > Currently this bridge also routes since it has 2 IP's, and the routes > manipulated. I also would like to setup a DHCP server on this > bridge/router. Eth0 is the backbone connection and eth1 is the LAN > connection. > > My question is how I can block dhcp port 67:68 UDP traffic from going on > the backbone connection (eth0). In the 2.2.19 kernel you can filter > traffic based on the interface, but with the netfilter patch it seems > that all traffic now shows up on the bridge interface (br0). Because of > this you cannot filter dhcp; otherwise it stops traffic for both sides > of the bridge. > EX of what I tried: > Iptables -A INPUT -p udp -i eth0 --sport 67:68 -j DROP > > EX of what works but blocks all traffic: > Iptables -A INPUT -p udp -i br0 --sport 67:68 -j DROP > > I hope this makes sense, TIA > > Vincent Tocco > EMU technical support > _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
