From mboxrd@z Thu Jan  1 00:00:00 1970
From: Grant Taylor <gtaylor@riverviewtech.net>
Date: Fri, 29 Dec 2006 01:31:40 +0000
Subject: Re: [LARTC] Using iptables level7/ipp2p match in a bridge
Message-Id: <45946FFC.60407@riverviewtech.net>
List-Id: <lartc.vger.kernel.org>
References: <020c01c72ae7$8e9722f0$0100a8c0@newlife>
In-Reply-To: <020c01c72ae7$8e9722f0$0100a8c0@newlife>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Ming-Ching Tiew wrote:
> Subject almost says it all, I wonder if there is a way for me
> to use iptables matches like l7 and/or ipp2p match in a 
> bridge ( one ethernet in and one ethernet out ) ?

Yes there is.  Read my previous post 
(http://mailman.ds9a.nl/pipermail/lartc/2006q4/019935.html) for more 
information.  In short, what you want to do is enable IPTables (layer 3 
and up) to be able to operate on bridged (layer 2) traffic.  "Bridged 
IP/ARP packets filtering" will allow you to do exactly what you are 
wanting to do.



Grant. . . .
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc