Hi, As far as I can see things, br_nf_local_out will only hand the packet via br_nf_local_out_finish_forward iff the ->physindev is set, which should not happen for normal packets. This check should only trigger for DNAT-ed-and-to-be-forwarded-to-a-bridge-device packets (which pass through bridge OUTPUT because of the way we abuse the ARP cache (skb->dst->output and friends)). Do you have a testcase where a locally originated packet actually gets passed through FORWARD?
cheers, Lennert On Tue, Jan 15, 2002 at 12:09:37AM +0100, Bart De Schuymer wrote: > Hello Lennert, > > For forwarded packets I would like the packets to go through the hook > functions like this: > brPREROUTING->ipPREROUTING->brINPUT->ipFORWARD > ->brOUTPUT->ipPOSTROUTING->brPOSTROUTING > So not map brOUTPUT onto brFORWARD. > Patch: > http://users.pandora.be/bart.de.schuymer/bridge-nf/bridge-nf-vs-0.0.6-OUTPUT > .diff > > Do you agree? > > cheers, > Bart > > _______________________________________________ > Bridge mailing list > [EMAIL PROTECTED] > http://www.math.leidenuniv.nl/mailman/listinfo/bridge _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
