Hello Lennert, After testing and finding 0.0.6 does not work correctly for DNAT'ed packets to the same bridge device, here is a patch that makes it work on my box. Comments are included in the source code. This patch is vs all the patches located in your netfilter patch-tracker. This patch also behaves nicely to ebtables. See: http://users.pandora.be/bart.de.schuymer/ebtables/br-nf/bridge-nf-against-0. 0.6_plus_later_patches.diff
If for some reason this doesn't patch cleanly, the full br_netfilter.c file is at http://users.pandora.be/bart.de.schuymer/ebtables/br-nf/br_netfilter.c Everyone interested (esp. Lennert) please review the following page that explains how the bridge/ebtables/iptables interaction works. http://users.pandora.be/bart.de.schuymer/ebtables/how_it_works.html Lennert, what do you think? Please don't ignore this mail. cheers, Bart _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
