Bridge filtering

From nftables wiki
Revision as of 19:53, 13 July 2016 by Pablo (talk | contribs) (Created page with "== Limitation == There is currently no connection tracking available for bridge filtering. == Examples == Filter on TCP destination port: <source lang="bash"> nft add rule...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Limitation

There is currently no connection tracking available for bridge filtering.

Examples

Filter on TCP destination port: 

nft add rule bridge filter forward ether type ip tcp dport 22 accept

Accept arp packet: 

nft add rule bridge filter forward ether type arp accept
Retrieved from "http://wiki.nftables.org/wiki-nftables/index.php?title=Bridge_filtering&oldid=30"