Received: (from majordomo@localhost)
	by oss.sgi.com (8.11.2/8.11.3) id g1R2QLb22885
	for netdev-outgoing; Tue, 26 Feb 2002 18:26:21 -0800
Received: from comunit.de (comunit.de [195.21.213.33])
	by oss.sgi.com (8.11.2/8.11.3) with SMTP id g1R2QH922878
	for <netdev@oss.sgi.com>; Tue, 26 Feb 2002 18:26:17 -0800
Received: (qmail 6650 invoked by uid 517); 27 Feb 2002 01:26:00 -0000
Date: Wed, 27 Feb 2002 02:26:00 +0100 (CET)
From: Sven Koch <haegar@sdinet.de>
X-X-Sender: haegar@space.comunit.de
To: Andy Jones <andy@bliss.commerce.uq.edu.au>
cc: netdev@oss.sgi.com
Subject: Re: Quick Question: Does Linux support bridging and firewalling at
 the same time?
In-Reply-To: <200202262312.g1QNCit28708@bliss.commerce.uq.edu.au>
Message-ID: <Pine.LNX.4.40.0202270223450.2774-100000@space.comunit.de>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-netdev@oss.sgi.com
Precedence: bulk
Content-Length: 699
Lines: 23

On Wed, 27 Feb 2002, Andy Jones wrote:

> It is my understanding that the firewalling and bridging code
> in the Linux kernel is mutually exclusive, though according
> to guides and HOWTOs etc on the net, it seems to be a metter
> of some confusion.
>
> Could you shed some light on whether it is, or isn't, and/or
> which patches need to be applied or whether it's simpler to
> just use some sort of BSD instead...

With a stock kernel, firewalling bridged connections is not possible.

With the patch from http://bridge.sourceforge.net/download.html ist is.

c'ya
sven

-- 

The Internet treats censorship as a routing problem, and routes around it.
(John Gilmore on http://www.cygnus.com/~gnu/)