On Wed, 2004-10-20 at 18:59, eric wrote: > What's the method by which you folks filter layer 2 traffic? Some of > my methods don't scale well (static arp entries, etc) and was > curious to know if there was working being conducted in this area > for pf, or any other BSD licensed goodies.
man 8 brconfig check out the examples on creating rules. especially nifty is the ability to tag packets at the bridge level and utilize those tags in your PF rules. dunno if this qualifies as "scalable" though... maybe the "rulefile" ability adds scalability. -j =~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~ Drinking coffee for instant relaxation? That's like drinking alcohol for instant motor skills. -- Marc Price =~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~=~