I recently rolled a custom kernel after applying the bridge patch, and setup an ethernet bridge on my network between the LAN and the router. So far, so good. All the clients can get to the router and vice-versa, so I was ready to begin implementing some firewall rules through iptables.
When I look through iptables, however, I'm confused by the output. It shows a great deal of packets traversing the INPUT and OUTPUT chains, but none crossing the FORWARD chain. Since the box itself isn't running any services, I assumed that all of the packets being sent from our LAN out to the router would traverse the FORWARD chain, and so I'd need to edit that through iptables. 1) Am I wrong about which chain the packets are traversing? Curiously, even the total number of packets crossing the wire seems far lower in iptables than when I query ifconfig. 2) If the FORWARD chain isn't showing any packets across it, is my bridge improperly functioning? I suspect that the issue is with iptables rather than the bridging portion of things, but I wan't to eliminate any variables. Thanks for any help anyone can provide! eol, Reed Wiedower reed wiedower [EMAIL PROTECTED] peyser.com 202.638.3730x115 _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
