Date: Wed, 01 Sep 2004 16:36:17 +0200 From: Andre Oppermann <andre@freebsd.org> To: Toxa <postfix@sendmail.ru> Cc: current@freebsd.org Subject: Re: something like net.link.ether.bridge_pf? Message-ID: <4135DE61.2010009@freebsd.org> In-Reply-To: <20040901112004.GA2625@laptoxa.toxa.lan> References: <20040901112004.GA2625@laptoxa.toxa.lan>
next in thread | previous in thread | raw e-mail | index | archive | help
Toxa wrote: > I guess that pf now cannot be used on bridge, I can't see something > similar to net.link.ether.bridge_pf (only net.link.ether.bridge_ipfw and > net.link.ether.bridge_ipf), as the result, my fbsd machine can act as > bridge, but pf rules actually doesn't work, simply allowing all > connections. > Is it possible to use pf on bridge? I want to move my bridge back from obsd to fbsd. I have a generic PFIL_HOOKS mechnism in the works that will replace the current direct dispatch into the packet filters with a generic way to hooks into bridging and ether_input/output. Although it won't make it into 5.3R but it should be in 6.0-current soon. -- Andre
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4135DE61.2010009>