Linux Netfilter discussions
 help / color / mirror / Atom feed
* -m physdev
@ 2005-06-26  9:22 bend chen
  2005-06-27  5:47 ` Francesco Ciocchetti
  0 siblings, 1 reply; 4+ messages in thread
From: bend chen @ 2005-06-26  9:22 UTC (permalink / raw)
  To: netfilter

hi,netfilter

	  who can give me some examples from "iptables -m physdev"?

thanks your help 


^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: -m physdev
  2005-06-26  9:22 bend chen
@ 2005-06-27  5:47 ` Francesco Ciocchetti
  0 siblings, 0 replies; 4+ messages in thread
From: Francesco Ciocchetti @ 2005-06-27  5:47 UTC (permalink / raw)
  To: bend chen; +Cc: netfilter

bend chen wrote:

>hi,netfilter
>
>	  who can give me some examples from "iptables -m physdev"?
>
>thanks your help 
>
>

^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: Re: -m physdev
@ 2005-06-27  9:14 bend chen
  2005-06-27  9:46 ` Francesco Ciocchetti
  0 siblings, 1 reply; 4+ messages in thread
From: bend chen @ 2005-06-27  9:14 UTC (permalink / raw)
  To: Francesco Ciocchetti; +Cc: netfilter

hi,Francesco Ciocchetti

thanks your help.

i used -m physdev in my BRIDGE.
but,did I must used  -m physdev in FORWARD tables ?

Can I use like these :

  iptables -A INPUT -m physdev --physdev-in eth0 -p tcp --dport 22 -j ACCEPT
  iptables -A OUTPUT -m physdev --physdev-out eth1 -p icmp -j DROP


	
Thans 

======= 2005-06-27 13:47:15 =======

>bend chen wrote:
>
>>hi,netfilter
>>
>>	  who can give me some examples from "iptables -m physdev"?
>>
>>thanks your help 
>>
>>

^ permalink raw reply	[flat|nested] 4+ messages in thread
* Re: -m physdev
  2005-06-27  9:14 Re: -m physdev bend chen
@ 2005-06-27  9:46 ` Francesco Ciocchetti
  0 siblings, 0 replies; 4+ messages in thread
From: Francesco Ciocchetti @ 2005-06-27  9:46 UTC (permalink / raw)
  To: bend chen; +Cc: netfilter

bend chen wrote:

> hi,Francesco Ciocchetti
>
> thanks your help.
>
> i used -m physdev in my BRIDGE.
> but,did I must used -m physdev in FORWARD tables ?
>
> Can I use like these :
>
> iptables -A INPUT -m physdev --physdev-in eth0 -p tcp --dport 22 -j ACCEPT
> iptables -A OUTPUT -m physdev --physdev-out eth1 -p icmp -j DROP
>
>
>
> Thans


Sure that you can do it ... if you enabled Support for Netfilter on
Bridge devices in your kernel.

You can use physdev-in, physdev-out as you wuold use '-i' and '-o' .

Bye
P.


^ permalink raw reply	[flat|nested] 4+ messages in thread
end of thread, other threads:[~2005-06-27  9:46 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2005-06-27  9:14 Re: -m physdev bend chen
2005-06-27  9:46 ` Francesco Ciocchetti
  -- strict thread matches above, loose matches on Subject: below --
2005-06-26  9:22 bend chen
2005-06-27  5:47 ` Francesco Ciocchetti

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox