any plans for a really lowlevel netfilter hook?

[Chris Friesen <cfriesen@xxxxxxxxxxxxxxxxxx>]

I've got a wn2k session running in vmware configured with bridged 
ethernet.  In this mode, windows accessses the hardware and gets a 
separate IP address from the linux host.  I assume that it's done 
through a packet socket or something like that.

Anyways, I had been hoping to be able to filter the packets, but it 
seems that they get pulled off before they hit the ip stack, and so 
iptables is useless.

ebtables seems to only affect bridged stuff, so I don't think that it 
would be applicable either.

What I'd like would be some kind of netfilter hook really early and 
really late (before and after packet sockets, respectively).  Any plans 
for such?

Chris

--
Chris Friesen                    | MailStop: 043/33/F10
Nortel Networks                  | work: (613) 765-0557
3500 Carling Avenue              | fax:  (613) 765-2986
Nepean, ON K2H 8E9 Canada        | email: cfriesen@xxxxxxxxxxxxxxxxxx