Highest Voted 'ebtables' Questions - Server Fault Stack Exchange

3

votes

1 answer

Transparent LAN service on Linux

I need to implement a VLAN based transparent LAN service on Linux. Meaning I need to take configured VLAN and forward it directly to the specified port (all broadcast/multicast and unicast packets). The trivial solution will be defining 1 to 1…

asked Nov 25 '18 at 17:04

Ilya

177
6

1

vote

0 answers

Transparent Proxy with DHCP passthru?

I'm trying to replicate on a small Linux-based router a behavior I've seen elsewhere, such as in cable modems: I need to get a single DHCP address from the WAN side, offer/pass that same address to the single attached client device, and mostly just…

iptables transparent-proxy ebtables

asked Dec 23 '19 at 15:31

sburlappp

11
2

1

vote

1 answer

How can it preserve source mac address unchanged after layer-3 filtering through a Linux bridge (which using bridge-utils and ebtables)

Background: I have a Linux bridge (Ubuntu 15.10, 64bit, name Bridge B) with two physical interfaces, eth0 and eth1, and the bridge interface’s name is br0. Send A (Win 10) connects to eth0, and Receiver C (Win 10) connects to eth1. As shown in the…

linux bridge mac filtering ebtables

asked Jan 08 '18 at 02:45

Dynamic

11
4

1

vote

1 answer

Block linux bridge traffic (only one way) using iptables or ebtables

I am using openwrt router. It has a bridge br-lan and wlan0, wlan1 are connected to this bridge. eth0 acts as the WAN interface. When a packet comes from wlan0 or wlan1 it goes from the bridge, gets NATed and goes out through eth0 to the internet…

linux networking iptables bridge ebtables

asked Apr 05 '17 at 22:06

The Prenx

111
4

1

vote

1 answer

Forwarding ethernet frames to tap interface using ebtables / ebtables missing broute table

I spend much time today figuring out how to do this, but I could not find a solution. In my mind it should be possible. I'm trying to setup the following setup: setup overview Reading the tap1 interface and forwarding to enp0s3 using Go should work…

iptables linux-networking ebtables

asked Mar 02 '22 at 14:50

TonyP.

11
2

1

vote

1 answer

STP Packet Filtering

I have a KVM host with guests joined to a virtual bridge for networking. Netdata on guests of this system drew my attention to packets being dropped at the network interface level (the metric reported as RX dropped by ifconfig). I tracked the…

linux networking stp ebtables

asked Feb 16 '21 at 21:26

user233054

1

vote

0 answers

Ebtables rule limit

Does anyone have any idea about ebtables rule count limitations? It starts giving this error around 26000 rules for filter table : [root@localhost 09]# ebtables -A testchain1 -p IPv4 --ip-src 'ipv4.x.x.x' -s 'mac:x:x:x:x:x' -j ACCEPT Unable to…

firewall centos7 ebtables

asked Sep 23 '20 at 12:53

Jevin Gala

59
9

0

votes

1 answer

Bridge filtering for man-in-the-middle network node

I am inserting my network node between 2 legacy devices that exchange tcp and udp messages using dedicated ports, in both directions. My new node needs to push some tcp/udp messages through transparently, and intercept other tcp/udp messages for…

iptables bridge forwarding man-in-the-middle ebtables

asked Aug 23 '19 at 23:31

markm

1
2

0

votes

1 answer

IP Packets stuck in routing decision

First of all, here is what my infra looks like and how it works : Controller1/2 and Compute1/2 both runs VM and are linked to each other via a VPN. On each server, the br-ext interface is plugged with the ext interface (the vpn one). All server are…

iptables routing linux-networking bridge ebtables

asked Jul 05 '19 at 10:11

mitsugoya

54
6

0

votes

1 answer

logging packets on a linux bridge

I'm trying to log packets using a bridge created on an espressobin v5 SOC. I've set it up using the archlinux arm package. This board is built out of the box to provide inherent switching and routing capabilities. I think i've disabled all of these…

bridge arch-linux ebtables

asked Jun 26 '19 at 20:03

j_unknown

3
4

0

votes

1 answer

Why does ebtables-restore fail when loading output from ebtables-save?

See: %sudo ebtables-save # Generated by ebtables-save v1.0 on Fri Mar 8 01:06:56 UTC 2019 *broute :BROUTING ACCEPT *nat :PREROUTING ACCEPT :OUTPUT ACCEPT :POSTROUTING ACCEPT *filter :INPUT ACCEPT :FORWARD ACCEPT :OUTPUT ACCEPT Trying to load…

linux-networking ebtables

asked Mar 08 '19 at 01:15

Gabe

31
3

0

votes

1 answer

Block port 25 for a Kvm VM on server

I need to know how to block port 25 for a VM on a KVM server using ebtables or firewalld service . VM has interface name viifv3035 on the server and brctl shows this: # brctl show bridge name bridge id STP enabled …

centos virtualization kvm-virtualization firewalld ebtables

asked Feb 27 '19 at 07:40

Jevin Gala

59
9

0

votes

0 answers

ebtables is causing packet loss

I am using AlmaLinux 8 on a dedicated server and hosting VPSes using KVM. Applying ebtables rules on those VPSes is causing packet loss issue. Bridge chain: v1001, entries: 1, policy: DROP -p IPv4 -s 00:xx:xx:52:69:ac --ip-src 192.168.122.204 -j…

linux-networking kvm-virtualization ebtables

asked Apr 21 '23 at 10:51

Jevin Gala

59
9

0

votes

0 answers

ebtables not working in docker

Hi I am trying to run ebtables within docker however none of the ebtables rules are being hit. For example - pay attention that counters are not increased though ARP is sent and succeeds [root@injector /]# ebtables -A OUTPUT -p ARP -j…

docker-compose docker-networking ebtables

asked May 18 '22 at 19:10

Boris

173
1
10

0

votes

0 answers

Linux bridge leaking traffic of shutdown vms

I've a linux bridge (br0) setup with netplan as the following: version: 2 renderer: networkd ethernets: eno1: dhcp4: no dhcp6: no bridges: probr: interfaces: - eno1 macaddress: ab:cd:ef:01:02:03 …

bridge libvirt qemu ebtables

asked Feb 15 '22 at 21:24

Andrew

21
2

Questions tagged [ebtables]