Date: Tue, 13 Apr 1999 19:27:45 +0200 From: Andres <dae@via.ecp.fr> To: Mariusz Potocki <mariusz@ovitanutricia.com.pl> Cc: Guy Helmer <ghelmer@scl.ameslab.gov>, questions@freebsd.org Subject: Re: bridging Message-ID: <37137E91.FD228656@via.ecp.fr> References: <XFMail.990413090330.mariusz@ovitanutricia.com.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
Mariusz Potocki wrote: > Will you be so kind and mail me these patches ? > Do your bridge work without IP assigning to NIC ? What about bridging IPX > traffic ? i have 2 nics and only one has an ip assigned, but i've read (don't remember where) that assigning an ip to the other nic shouldn't be a problem, i haven't tested it though. if i understood correctly ip_fw.c the only thing the ipfirewall is aware of is ip packets, and all the other packets go to the default rule. so if you want to enable filtering with bridging, you have to put an open default rule, or your arp packets won't pass the firewall (as they aren't over ip). you can do that by adding this to the kernel config: options IPFIREWALL_DEFAULT_TO_ACCEPT with this every packet that is not matched by the firewall rules (including arp, ipx, appletalk, whatever) will be bridged. as for the patch, guy has just committed it into 3.1-stable, so just cvsup to the latest stable. guy, i've just cvsupped and compiled a kernel, if_ep.c bridging seems to be working right here. thanks a lot :-) as this might interest others as well, i've cc'ed questions@freebsd.org, i hope this is not a problem. regards, Andres To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?37137E91.FD228656>