Date: Thu, 25 Sep 2008 08:12:09 +0400 From: Eygene Ryabinkin <rea-fbsd@codelabs.ru> To: Michael Proto <mike@jellydonut.org> Cc: FreeBSD Current <freebsd-current@freebsd.org> Subject: Re: sysctls and if_bridge Message-ID: <Glct5B/R05YwrNzFOjUt/OoOCfU@PxmLvHR7cy2uNKfRAhuCJiew1vI> In-Reply-To: <1de79840809241812v1281077ckb0cb5382cf7d6422@mail.gmail.com> References: <48C1E43C.1010902@jellydonut.org> <1de79840809240710q5222645ar4549d96a457d7614@mail.gmail.com> <wFMM0X05KwEp6HzmyOu91favmi0@8aZIZZZvzzzGx/hHi7dR6YPK4zY> <1de79840809240745k4bb9d7bekb3f96812e109d035@mail.gmail.com> <LyPyDw09yr5e1a0tT3kyR/WQSgU@S2P6rg883vXakEHU62nnBivR4l8> <1de79840809241005o17ce674w21df25a0a310f0ec@mail.gmail.com> <1de79840809241812v1281077ckb0cb5382cf7d6422@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--lRF4gxo9Z9M++D0O
Content-Type: text/plain; charset=koi8-r
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Michael, good day.
Wed, Sep 24, 2008 at 09:12:04PM -0400, Michael Proto wrote:
> Manually setting the bridge0 MAC to something other than the wan did work.
> Rebuilt kernel with if_bridge.c rev 1.117 and the bridge0 MAC is now
> randomly-generated again, and works as well.
Glad to hear.
> Thanks for the help!
You're welcome ;))
> I also now see the net.link.bridge.inherit_mac sysctl as specified in the
> commit. Just curious, but would this be useful in situations where
> pfil_member is 1 and pfil_bridge is 0?
It depends on one's needs, as usual, but perhaps it won't be very useful
if you'll decide to filter on _all_ bridge members. Having two interfaces
with the same MACs within the bridge poses some problems in the case of
a locally-destined packets, but sysctl net.link.bridge.pfil_local_phys
can help with those.
Filtering rules for packets that are traversing the bridge shouldn't
be harmed by MAC inheritance, unless I am missing something.
--=20
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual =20
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook=20
{_.-``-' {_/ #
--lRF4gxo9Z9M++D0O
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (FreeBSD)
iEYEARECAAYFAkjbD5kACgkQthUKNsbL7YiTHACgoT15lsV7KbOY6ge61ZerEKdF
ReYAnRKJMX+93XBuA1gn/Uc83y4IPSAC
=XkKR
-----END PGP SIGNATURE-----
--lRF4gxo9Z9M++D0O--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Glct5B/R05YwrNzFOjUt/OoOCfU>