Hello I am using pkt-type match this way:
iptalbes -I PREROUTING -t nat -m pkt-type --pkt-type ! host -j DROP to drop any broadcasts and multicasts. yet when out of plain curiosity i have added: iptables -I INPUT -p igmp -j LOG --log-prefix "igmp: " and it showed some igmp. how come? i thought that pkt-type ! host will drop igmp: 150.254.37.5 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0x00 TTL=1 ID=42129 PROTO=2 150.254.37.5 is my cisco router. any ideas? Best Regards, Maciej Soltysiak
