Date: Thu, 16 Sep 2004 03:46:55 -0000 From: "Max Laier" <max@love2party.net> To: <pf4freebsd@freelists.org> Subject: [pf4freebsd] Re: Bridging? Message-ID: <004701c36c53$ed0c0860$01000001@max900> References: <200308262103.12394.alan@precisionautobody.com>
next in thread | previous in thread | raw e-mail | index | archive | help
bridge.c has PFIL_HOOKS implemented. All you should have to do is: # sysctl net.link.ether.bdg_ipf=1 More documentation can be found in the sources: http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/net/bridge.c#rev1.48 Note the part about "This will not work in (...) the bridge.ko module.", you need built in bridge to make it work. Best way to test, is to load a ruleset only containing: block log and then $pftcpdump -n -e -ttt -i pflog0 while generating traffic from both sides. This will give you an idea what filter rules you'll need. ----- Original Message ----- From: "Alan Bryan" <alan@precisionautobody.com> To: <pf4freebsd@freelists.org> Sent: Wednesday, August 27, 2003 6:03 AM Subject: [pf4freebsd] Bridging? > I can't seem to find any information about pf and bridging on FreeBSD. I've > got my bridge set up and working but seem to be unable to get pf to block any > traffic through the bridge. > > Before I waste more time on this has anyone else successfully used pf on a > FreeBSD bridge? > > Thanks, > Alan >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004701c36c53$ed0c0860$01000001>