From owner-freebsd-questions@FreeBSD.ORG  Fri Apr 23 15:06:17 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5029716A4CF
	for <questions@FreeBSD.org>; Fri, 23 Apr 2004 15:06:17 -0700 (PDT)
Received: from mta9.adelphia.net (mta9.adelphia.net [68.168.78.199])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E33FC43D45
	for <questions@FreeBSD.org>; Fri, 23 Apr 2004 15:06:16 -0700 (PDT)
	(envelope-from mike@pcmedx.com)
Received: from duron.pcmedx.com ([69.167.182.91]) by mta9.adelphia.net
          (InterMail vM.5.01.06.08 201-253-122-130-108-20031117) with ESMTP
          id <20040423220613.DLMU26615.mta9.adelphia.net@duron.pcmedx.com>;
          Fri, 23 Apr 2004 18:06:13 -0400
Received: from localhost (localhost [127.0.0.1])
	by duron.pcmedx.com (Postfix) with ESMTP
	id E82FBAAEC; Fri, 23 Apr 2004 15:06:12 -0700 (PDT)
Received: from duron.pcmedx.com ([127.0.0.1])
 by localhost (duron.pcmedx.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 34574-03; Fri, 23 Apr 2004 15:06:12 -0700 (PDT)
Received: from mike (mike.pcmedx.com [192.168.240.244])
	by duron.pcmedx.com (Postfix) with SMTP
	id 04DD8AAD3; Fri, 23 Apr 2004 15:06:12 -0700 (PDT)
Message-ID: <000601c4297f$308207f0$f4f0a8c0@pcmedx.com>
From: "Mike Maltese" <mike@pcmedx.com>
To: <questions@FreeBSD.org>
References: <20040423154500.SM01300@casey04>
Date: Fri, 23 Apr 2004 15:06:12 -0700
MIME-Version: 1.0
Content-Type: text/plain;
	charset="windows-1250"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1158
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
X-Virus-Scanned: by amavisd (http://www.amavis.org) and f-prot
	(http://www.f-prot.com) at pcmedx.com
cc: Casey Lenhart <caseyl@touchfon.com>
Subject: Re: Bridging Firewall
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Apr 2004 22:06:17 -0000

> I find no reference to MAC rules showing up in 5.2.1. Any help or advice
> would be appreciated.

That's because bridge(4) doesn't do Layer 2 filtering. Neither does ipfw (as
well it shouldn't). I don't know if there are any plans to add this
capability to FreeBSD's bridge, but I know that OpenBSD's bridge can do it.
See http://www.openbsd.org/faq/faq6.html#Bridge and the man pages for
bridge(4) and brconfig(8).