Re: [LARTC] filtering in layer 2 [but is not a bridge]

To:	Grant Taylor <gtaylor@riverviewtech.net>
Subject:	Re: [LARTC] filtering in layer 2 [but is not a bridge]
From:	Zoilo Gomez <zoilo@xs4all.nl>
Date:	Sat, 13 Jan 2007 14:42:51 +0100
Cc:	Mail List - Linux Advanced Routing and Traffic Control <lartc@mailman.ds9a.nl>
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	lartc-list@securepoint.com
Delivered-to:	lartc@outpost.ds9a.nl
In-reply-to:	<45A857DB.2030208@riverviewtech.net>
List-archive:	<http://mailman.ds9a.nl/pipermail/lartc>
List-help:	<mailto:lartc-request@mailman.ds9a.nl?subject=help>
List-id:	"Mailinglist of the Linux Advanced Routing & Traffic Control project" <lartc.mailman.ds9a.nl>
List-post:	<mailto:lartc@mailman.ds9a.nl>
List-subscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>
List-unsubscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>
References:	<200701091052.37604.luciano@lugmen.org.ar> <45A39FF6.5080608@xs4all.nl> <200701110856.43061.luciano@lugmen.org.ar> <45A6270C.1060807@xs4all.nl> <45A857DB.2030208@riverviewtech.net>
Reply-to:	zoilo@xs4all.nl
Sender:	lartc-bounces@mailman.ds9a.nl
User-agent:	Mozilla Thunderbird 1.0.6 (X11/20051215)

To:

Grant Taylor <gtaylor@riverviewtech.net>

Subject:

Re: [LARTC] filtering in layer 2 [but is not a bridge]

From:

Zoilo Gomez <zoilo@xs4all.nl>

Date:

Sat, 13 Jan 2007 14:42:51 +0100

Cc:

Mail List - Linux Advanced Routing and Traffic Control <lartc@mailman.ds9a.nl>

Delivered-to:

sp-com-lists@consult.net

Delivered-to:

lartc-list@securepoint.com

Delivered-to:

lartc@outpost.ds9a.nl

In-reply-to:

<45A857DB.2030208@riverviewtech.net>

List-archive:

<http://mailman.ds9a.nl/pipermail/lartc>

List-help:

<mailto:lartc-request@mailman.ds9a.nl?subject=help>

List-id:

"Mailinglist of the Linux Advanced Routing & Traffic Control project" <lartc.mailman.ds9a.nl>

List-post:

<mailto:lartc@mailman.ds9a.nl>

List-subscribe:

<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>

List-unsubscribe:

<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>

References:

<200701091052.37604.luciano@lugmen.org.ar> <45A39FF6.5080608@xs4all.nl> <200701110856.43061.luciano@lugmen.org.ar> <45A6270C.1060807@xs4all.nl> <45A857DB.2030208@riverviewtech.net>

Reply-to:

zoilo@xs4all.nl

Sender:

lartc-bounces@mailman.ds9a.nl

User-agent:

Mozilla Thunderbird 1.0.6 (X11/20051215)

Thank you for your clarification, Grant.

In a different setup, I have been using Access Points (i.e. TrendnetTEW453APB) with the 'wireless isolation' flag enabled in theconfiguration setup. In this configuration, wireless clients cannot seeeach other, and all traffic is forwarded to the Linux router.


But I must admit that I never looked into this using Host AP.

Still, I would expect that there should be a way to achieve this kind ofconfiguration using Host AP....?


Grant Taylor wrote:

On 01/11/07 06:01, Zoilo Gomez wrote:
Isn't an AP just a bridge with a wireless interface?
In a sense, yes. However the 802.11 wireless side of the bridge is avery complex physical layer, (IMHO) more so than 802.3 ethernet.
Host AP is probably listening to requests at the physical tranceiverlevel. If the Host AP is operating in an AP mode (wouldn't it be?) itwill have to be involved in passing the traffic from one 802.11 clientto another. This is really a form of bridging on the physical layer,not layer 2 in the kernel. Thus EB / IP Tables will not help here.
I have not (yet) personally worked with Host AP, though I plan to. Assuch, I'm not sure if it includes functionality to filter the trafficthat it sees.
I wonder if it would be a possibility to (theoretically) move / extendthe functionality of Host AP such that each associated wireless clientwould (logically / theoretically) appear as a separate interface to acustom bridge that could then be presented / controlled via EBTables.However, this is quite likely exceeding the 802.11 specification insuch a way that it would really no longer be 802.11.
Something to keep in mind is that in Infrastructure wireless mode, onewireless client has to talk to the AP and have the AP talk to anotherwireless client on it's behalf. I believe this is the ""bridging thatthe OP is referring to. Note, I use the term bridging loosely here.
On a side note, how well do you like Host AP?



Grant. . . .
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc


_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

<Prev in Thread]	Current Thread	[Next in Thread>
[LARTC] filtering in layer 2 [but is not a bridge], Luciano Ruete Re: [LARTC] filtering in layer 2 [but is not a bridge], Zoilo Gomez Re: [LARTC] filtering in layer 2 [but is not a bridge], Luciano Ruete Re: [LARTC] filtering in layer 2 [but is not a bridge], Zoilo Gomez Re: [LARTC] filtering in layer 2 [but is not a bridge], Grant Taylor Re: [LARTC] filtering in layer 2 [but is not a bridge], Zoilo Gomez <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	[LARTC] multipath device round robin not working?, zutph3n@gmail.com
Next by Date:	Re: [LARTC] multipath device round robin not working?, Alex Samad
Previous by Thread:	Re: [LARTC] filtering in layer 2 [but is not a bridge], Grant Taylor
Next by Thread:	[LARTC] TCNG on openSuSE 10.2, Roger Venable
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

[LARTC] multipath device round robin not working?, zutph3n@gmail.com

Next by Date:

Re: [LARTC] multipath device round robin not working?, Alex Samad

Previous by Thread:

Re: [LARTC] filtering in layer 2 [but is not a bridge], Grant Taylor

Next by Thread:

[LARTC] TCNG on openSuSE 10.2, Roger Venable

Indexes:

[Date] [Thread] [Top] [All Lists]