> 1. Config linux kernel as follow:a)network filter yes; > b) bridge yes c) bridge firewall support yes > 2. compile the kernel and reboot linux > 3. brctl addbr br; > ifconfig eth0 0.0.0.0 > ifconfig eth1 0.0.0.0 > ifconfig br x.x.x.x > brctl addif br eth0 > brctl addif br eth1 > iptables -A INPUT -i eth0 -j DROP > iptables -A INPUT -i eth1 -j DROP > 4. all packet should block by netfilter, but the bridge > still work, the firewall not run > > why pls.
try to apply your rule to the FORWARD chain. iptables -A FORWARD -i eth0 -o eth1 -j DROP iptables -A FORWARD -i eth1 -o eth0 -j DROP it works. sCALP _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
