From owner-cvs-all  Sun Mar 17 16:55:32 2002
Delivered-To: cvs-all@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id 3721337B404; Sun, 17 Mar 2002 16:55:24 -0800 (PST)
Received: (from cjc@localhost)
	by freefall.freebsd.org (8.11.6/8.11.6) id g2I0tOi86291;
	Sun, 17 Mar 2002 16:55:24 -0800 (PST)
	(envelope-from cjc)
Message-Id: <200203180055.g2I0tOi86291@freefall.freebsd.org>
From: "Crist J. Clark" <cjc@FreeBSD.org>
Date: Sun, 17 Mar 2002 16:55:24 -0800 (PST)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: src/sys/net bridge.c
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

cjc         2002/03/17 16:55:24 PST

  Modified files:
    sys/net              bridge.c 
  Log:
  Add hooks for very basic IPFilter support in bridging. Set,
  
    # sysctl net.link.ether.bdg_ipf=1
  
  To enable. Just like ipfw(8) bridging, only input packets are filtered
  in the bridge. Filtering works just like in the IP layer, ipf(8)
  first, then ipfw(8). And just like in the IP layer, both are
  independent, one need not be run to use the other. (Note: This will
  not work in, but doesn't break, the bridge.ko module. The ipl.ko
  module would need to be fixed before that is worth worrying about.)
  
  Reviewed by:    luigi
  
  Revision  Changes    Path
  1.48      +42 -5     src/sys/net/bridge.c

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message