Re: [LARTC] Using iptables level7/ipp2p match in a bridge

To:	"Mail List - Linux Advanced Routing and Traffic Control" <lartc@mailman.ds9a.nl>
Subject:	Re: [LARTC] Using iptables level7/ipp2p match in a bridge
From:	"Ming-Ching Tiew" <mingching.tiew@redtone.com>
Date:	Fri, 29 Dec 2006 10:04:14 +0800
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	lartc-list@securepoint.com
Delivered-to:	lartc@outpost.ds9a.nl
List-archive:	<http://mailman.ds9a.nl/pipermail/lartc>
List-help:	<mailto:lartc-request@mailman.ds9a.nl?subject=help>
List-id:	"Mailinglist of the Linux Advanced Routing & Traffic Control project" <lartc.mailman.ds9a.nl>
List-post:	<mailto:lartc@mailman.ds9a.nl>
List-subscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>
List-unsubscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>
References:	<020c01c72ae7$8e9722f0$0100a8c0@newlife> <45946FFC.60407@riverviewtech.net>
Sender:	lartc-bounces@mailman.ds9a.nl

To:

"Mail List - Linux Advanced Routing and Traffic Control" <lartc@mailman.ds9a.nl>

Subject:

Re: [LARTC] Using iptables level7/ipp2p match in a bridge

From:

"Ming-Ching Tiew" <mingching.tiew@redtone.com>

Date:

Fri, 29 Dec 2006 10:04:14 +0800

Delivered-to:

sp-com-lists@consult.net

Delivered-to:

lartc-list@securepoint.com

Delivered-to:

lartc@outpost.ds9a.nl

List-archive:

<http://mailman.ds9a.nl/pipermail/lartc>

List-help:

<mailto:lartc-request@mailman.ds9a.nl?subject=help>

List-id:

"Mailinglist of the Linux Advanced Routing & Traffic Control project" <lartc.mailman.ds9a.nl>

List-post:

<mailto:lartc@mailman.ds9a.nl>

List-subscribe:

<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>

List-unsubscribe:

<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>

References:

<020c01c72ae7$8e9722f0$0100a8c0@newlife> <45946FFC.60407@riverviewtech.net>

Sender:

lartc-bounces@mailman.ds9a.nl

From: "Grant Taylor" <gtaylor@riverviewtech.net>
> 
> Yes there is.  Read my previous post 
> (http://mailman.ds9a.nl/pipermail/lartc/2006q4/019935.html) for more 
> information.  In short, what you want to do is enable IPTables (layer 3 
> and up) to be able to operate on bridged (layer 2) traffic.  "Bridged 
> IP/ARP packets filtering" will allow you to do exactly what you are 
> wanting to do.
> 

Thank you for a reply which comes in so useful. I would like to get into
a bit more details. Assuming I have already enable the kernel options, 
do you mean if I want to mark ipp2p traffic, I will do something like this :-

       iptables -A FORWARD -m ipp2p --ipp2p -j MARK --set-mark 6

If I set more options such as "-i eth0 -o eth1" will I be able to capture 
the traffic more particularly  ?

Regards



_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

<Prev in Thread]	Current Thread	[Next in Thread>
[LARTC] Using iptables level7/ipp2p match in a bridge, Ming-Ching Tiew Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Grant Taylor Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Ming-Ching Tiew <=

Previous by Date:	Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Grant Taylor
Next by Date:	[LARTC] Packet dropping schemes, Jonathan Day
Previous by Thread:	Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Grant Taylor
Next by Thread:	[LARTC] Packet dropping schemes, Jonathan Day
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Grant Taylor

Next by Date:

[LARTC] Packet dropping schemes, Jonathan Day

Previous by Thread:

Re: [LARTC] Using iptables level7/ipp2p match in a bridge, Grant Taylor

Next by Thread:

[LARTC] Packet dropping schemes, Jonathan Day

Indexes:

[Date] [Thread] [Top] [All Lists]