ipfw amd bridge
Julian Elischer
julian at elischer.org
Sat Mar 14 23:46:14 PDT 2009
Olivier Nicole wrote:
> Hi,
>
> I remember reqading in the past (4.x) that on a machine with bridged
> interfaces, only layer 2 rules of ipfw would apply.
not quite.
there are rules that do not work when called from a layer two
point. e.g. divert does not work, nor does 'fwd' (without patches).
Rules not specifically labeled "layer2" will still process packets,
but rules labeled "not layer2" will not do so. (as expected).
note if_bridge and bridge are different and may have
behavioral differences in this regard.
>
> Is this still the case with 6.4, 7.1?
>
> best regards,
>
> Olivier
> _______________________________________________
> freebsd-ipfw at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe at freebsd.org"
More information about the freebsd-ipfw
mailing list