[LARTC] Using iptables level7/ipp2p match in a bridge
Grant Taylor
gtaylor at riverviewtech.net
Tue Jan 9 03:28:59 CET 2007
On 12/28/06 20:04, Ming-Ching Tiew wrote:
> Thank you for a reply which comes in so useful. I would like to get into
> a bit more details. Assuming I have already enable the kernel options,
> do you mean if I want to mark ipp2p traffic, I will do something like this :-
You are welcome.
> iptables -A FORWARD -m ipp2p --ipp2p -j MARK --set-mark 6
Yes, with "Bridged IP/ARP packets filtering" you can do that.
> If I set more options such as "-i eth0 -o eth1" will I be able to capture
> the traffic more particularly ?
In short yes. "Bridged IP/ARP packets filtering" allows IPTables to see
bridged traffic. This means that any filtering you can do with IPTables
can now be done on bridged traffic.
Grant. . . .
More information about the LARTC
mailing list