Google
  Web www.spinics.net

Re: Re: filtering BPDU(STP) from bridged vlans

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On Fri, 6 Jul 2007, Stephen Hemminger wrote:

> On Fri, 6 Jul 2007 11:52:59 -0400 (EDT)
> Krzysztof Adamski <k@xxxxxxxxxxx> wrote:
>
> > Hi All,
> >
> > What is the correct way of filtering STP (BPDU) packets from a single
> > bridge that contains vlans, equivalent to cisco's:
> >  spanning-tree rootguard
> >  spanning-tree bpdufilter enable
> >
> >
> > I have many bridge interfaces, each with two vlans, for example
> >
> > eth0.400 and eth1.500 are part of br600, and I want to prevent all STP
> > packets that arrive on eth1.500 from being passed to eth0.400.
> >
> > I have other br interfaces that I don't want to be affected.
> >
>
> There is an ebtables module to filter out STP.
> Note: the bridge code does not pass STP, it uses it.

I have been looking at ebtables, but I don't see of filtering just one
bridge.

_______________________________________________
Vlan mailing list
Vlan@xxxxxxxxxxxxxxx
http://www.candelatech.com/mailman/listinfo/vlan

[Netdev]     [Ethernet Bridging]     [Linux Wireless]     [Kernel Newbies]     [Security]     [Linux for Hams]     [Netfilter]     [Bugtraq]     [Photo]     [Yosemite]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux RAID]     [Linux Admin]     [Samba]     [Video 4 Linux]     [Linux Resources]

Powered by Linux