Stack Overflow
Stack Overflow

Questions tagged [ebtables]

The ebtables program is a filtering tool for a Linux-based bridging firewall. It enables transparent filtering of network traffic passing through a Linux bridge.

27 questions
1
vote
4 answers

Unable to set net.bridge.bridge-nf-call-iptables within Docker container

I'm trying to control whether or not packets traversing a bridge I've set up in my Docker container are sent to iptables for processing using the following command: sysctl -w net.bridge.bridge-nf-call-iptables="1" Unfortunately, this doesn't…
Joseph Tricklebank-Owens
  • 11
  • 1
  • 2
1
vote
2 answers

MAC filtering using iptables/ebtables

I'm trying to drop a MAC address on a node in my network. Now, I tried two tools iptables and ebtables, but both attempts failed: iptables -A INPUT -m mac --mac-source 00:0F:EA:91:04:08 -j DROP resulting in "iptables: No chain/target/match by that…
atobi
  • 123
  • 1
  • 2
  • 7
0
votes
1 answer

Filtering out VLAN tagged packets on Linux bridge

I have the following IF configuration: eth0 --- br0 --- eth1 I receive udp broadcast transmission (on port 20000) on eth1 and do not want the bridge to forward it to eth0 (my wired interface). Hence, I apply ebtables -t filter -A FORWARD -o eth0…
Yakir Matusovsky
  • 13
  • 1
  • 3
0
votes
1 answer

Filtre layer 2 multicast packet

I tried to filter layer 2 multicast packet (no IP header) generated by GOOSE protocol. The commands below are used (ebtable and iptables) but did not work. Can anyone please give some advice? I used ebtables because i readed that iptables can't…
yassine
  • 45
  • 1
  • 11
0
votes
1 answer

Where multicast packets could be filtered?

I installed openWRT distro on my router and enable support of avahi in it. My goal is to discover network services in my network. I plugged my PC to LAN port with announced services. On router I run tcpdump on bridge interface : tcpdump -i br0 -vvn…
Jurasic
  • 1,845
  • 1
  • 23
  • 29
0
votes
1 answer

custom ebtables module && skb manipulation && kernel panic

Some time ago I implemented ebtables module based on vnat module by Ashwin Kashyap (http://www.research.rutgers.edu/~ashwink/misc_projs/ebt_vnat.html). Module can be used in BROUTING chain in broute table for stripping vlan tags and putting vlan id…
catnip
  • 1
  • 2
0
votes
1 answer

EBTABLES. Type of packets "otherhost"

I've got a question concerning ebtables. The question is concerned with --pkttype-type option. In description of this option (MAN) I see there are four possible values: broadcast multicast host otherhost (non of the above) Please explain me what…
HFFreeway
  • 19
  • 1
  • 2
  • 9
0
votes
2 answers

How to create a DHCP snooping rule in a Linux virtual bridge

I have a Linux server (10.0.0.1) running a DHCP server and a virtual bridge. The virtual bridge connects 4 Ethernet interfaces and works as a master switch connecting my users. The problem arise if some user accidentally creates a rogue DHCP server…
user1913578
  • 1
  • 2
0
votes
1 answer

how to execute a shell script when an ebtables rules match?

I want to execute a shell script when particular ebtables rules match. The Script should get the MAC address of the client and the interface in which the client is connected. how can I achieve this?.
user1216216
  • 525
  • 2
  • 7
  • 13
0
votes
1 answer

how to send the reqursted MAC address as a argument while redirect to a URL using Iptables?

I want to redirect the clients to different URL. I have done this using port redirection. But Now I want the MAC address of the client as a argument for the URL. How can I get the MAC address and send with the URL.
user1216216
  • 525
  • 2
  • 7
  • 13
0
votes
1 answer

How can I store the MAC address of a client in a file before redirecting to any port using iptables/ebtables

I want to store the MAC address of the client to a file before redirecting to some IP or port. I'm doing the redirection using iptables. Is it possible to get the MAC of the client and store it in a file?
user1216216
  • 525
  • 2
  • 7
  • 13
-1
votes
1 answer

Configure captive portal having multiple VLAN with ebtable

http://s16.postimg.org/e5nu6g1md/bridgevlancaptive.png The above image is based on my project about captive portal. As you can see on the image i have a diagram on LEFT side which is WORKING without a problem on a normal scenario without any…
dannymagat
  • 45
  • 1
  • 6
1
2