0

I need to drop UDP packets with specific UDP port number) on network interface (say eth0). On my setup the interface eth0 is part of the bridge.

is it possible to do it using tc command? if yes, how?

Dima
  • 485
  • 3
  • 7
  • 15

1 Answers1

4

No, tc is not for firewalling. Use ebtables instead.

David Schwartz
  • 31,449
  • 2
  • 55
  • 84
  • since eth0 is part of bridge, I can do it using iptables. According to http://www.gossamer-threads.com/lists/iptables/user/68953 and http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555471 I cannot use iptables rule for physical interface. Can I do something else? – Dima Sep 07 '11 at 17:59
  • Sorry, you want 'ebtables'. – David Schwartz Sep 07 '11 at 18:10