On Mon, Jul 06, 2009 at 05:49:00PM -0400, Sebastien Roy wrote: > ACL name Protection Default values Possible values > ------------------------------------------------------------------------ > whitelist-in whitelist ipv4, ipv6, arp Any subset of > Any inbound packet ipv4, ipv6, arp > not matching one of > these protocols is > dropped. > > whitelist-out whitelist ipv4, ipv6, arp Any subset of > Any outbound packet ipv4, ipv6, arp > not matching one of > these protocols is > dropped. > > By design, the SAP space for a given media is defined by the MAC-Type > plugin for that media. For example, the SAP corresponding to IPv4 for > DL_ETHER is ETHERTYPE_IP, but for other MAC-Types, it might not be. For > IP tunnels, for example, it's IPPROTO_ENCAP. I would hope that there > isn't any more Ethernet-specific stuff going into the common framework > to implement this, and that you're leveraging the plugin architecture. > Is this the case? >
yes, certainly. we will use mac_header_info() to retrieve the sap just like mac_flow.c does today. thanks eric
