I got my bridge working and sending packets through iptables, great. Thanks for your help Bart.
Now I have a question about how exactly the packets transversing the tables. My particular setup has eth0 static ip, and eth1, eth2 are part of br0. I've connected via eth0 and am monitoring packet statistics, the following stats are a result of an ssh connection to eth0 while a 'ping -f' is running across the br0 # iptables -t nat -Z ; iptables -Z ; sleep 30 ; printf " ## NAT ## \n" ; iptables -t nat -vnL ; printf "\n ## FILTER ## \n" ; iptables -vnL ## NAT ## Chain PREROUTING (policy ACCEPT 8364 packets, 703K bytes) pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 8364 packets, 703K bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination ## FILTER ## Chain INPUT (policy ACCEPT 8 packets, 416 bytes) pkts bytes target prot opt in out source destination Chain FORWARD (policy ACCEPT 50135 packets, 4079K bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 10 packets, 1400 bytes) pkts bytes target prot opt in out source destination The filter table INPUT and OUTPUT stats are from the ssh connection, and the filter FORWARD is obviously the ping flood but what are those (703k) packets in the PRE/POST ROUTING tables? Thanks, // George -- GEORGE GEORGALIS, System Admin/Architect cell: 347-451-8229 Security Services, Web, Mail, mailto:[EMAIL PROTECTED] Multimedia, DB, DNS and Metrics. http://www.galis.org/george _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
