CVSROOT: /cvs
Module name: src
Changes by: d...@cvs.openbsd.org 2019/08/04 21:56:31
Modified files:
sys/net : if_tpmr.c
Log message:
run pf against ip packets coming in and out of the two ports.
the idea and a good chunk of the implementation is copied from
bridge(4).
note that IP packets inside "service delimited" traffic, ie, vlan,
svlan, or bpe encapsulated traffic, are not considered IP and will
therefore not be given to pf to look at. if you want to filter that
you'll need to configure vlan/svlan/bpe interfaces to get past their
headers, and then configure them with their own tpmrs. hopefully
the interface input handlers were established in the right order.
