Home Explore Help
Register Sign In
FreifunkHochstift
/
gluon
6
0
Fork 0
Files Issues 0 Pull Requests 0
Browse Source

gluon-ebtables-filter-multicast: do not filter out Bridge Loop Avoidance

batman-adv uses gratuitous ARP packets with certain target addresses for
BLA.

Fixes #1198
Matthias Schiffer 6 years ago
parent
35237c2ca1
commit
f799518194
1 changed files with 4 additions and 0 deletions
Split View Show Diff Stats
  1. 4 0
      package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp

+ 4 - 0
package/gluon-ebtables-filter-multicast/files/lib/gluon/ebtables/110-mcast-allow-arp
View File 

@@ -1,3 +1,7 @@
 
+# Bridge loop avoidance
 
+rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-gratuitous --arp-mac-dst ff:43:05:00:00:00/ff:ff:ff:fc:00:00 -j RETURN'
 
+rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-gratuitous --arp-mac-dst ff:43:05:05:00:00/ff:ff:ff:ff:00:00 -j RETURN'
 
+
 
 rule 'MULTICAST_OUT -p ARP --arp-opcode Reply --arp-ip-src 0.0.0.0 -j DROP'
 
 rule 'MULTICAST_OUT -p ARP --arp-opcode Request --arp-ip-dst 0.0.0.0 -j DROP'
 
 rule 'MULTICAST_OUT -p ARP -j RETURN'