On Fri, Mar 01, 2002 at 10:13:26PM +0100, Bart De Schuymer wrote:
> > > Try this patch and plz say if it solves it. I posted it some time ago > > > (January 15th), but Lennert ignored/missed it. OK, there it is. I just knew it :) > > > If your packets are routed then the bridge-nf patch will make the > > > packets go > > > through the ebtables FORWARD chain instead of the ebtables OUTPUT chain > > > (without this patch). I don't like it... > > > > If packets are routed, they should not go through br_nf_local_out, > > right? Actually, routed packets _should_ go through br_nf_local_out. I was talking shit here, and I see why your patch is needed now. I see I missed the okfn-check-in-ipv4-sabotage-out hunk from your patch, so I just put yours on the bridge-nf patchtracker page. It will be in 0.0.7. Sorry for the big delay :~( > You just make me realize that my patch makes the layer 2 flow > (seen from ebtables' standpoint) for ip DNATed 'bridged' packets > unnatural. So we need a compromise that handles both, right? You mean the cross-bridge DNAT case, or the other case? cheers, Lennert _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
