On Fri, 2003-03-07 at 18:19, S Mohan wrote:
I'm also not sure why you need ebtables. The bridge-nf patches already incorporated in the Bering kernel already allow one to filter, mangle and nat IPv4 packets with iptables.
But not to the extent that one can make meaningful use of Shorewall. We have several choices:
a) Just use iptables/ebtables directly in the bridging environment (the current state of affairs).
b) Hack Shorewall to allow it to be used in a bridging environment. This may involve the use of ebtables to force packets to be routed rather than bridged (see Mohan's recent post).
c) Clone Shorewall and hack out everything that doesn't apply to bridging, add whatever is necessary and call it Shorebridge or something.
d) Create from scratch a frontend for iptables that is targeted at the bridging environment.
I've volunteered to help determine the feasibility of b). I have neither the time nor the interest to get involved in c) or d).
-Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ [EMAIL PROTECTED]
-------------------------------------------------------
This SF.net email is sponsored by: Etnus, makers of TotalView, The debugger for complex code. Debugging C/C++ programs can leave you feeling lost and disoriented. TotalView can help you find your way. Available on major UNIX and Linux platforms. Try it free. www.etnus.com
_______________________________________________ leaf-devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-devel
