On Thu, May 29, 2003 at 10:14:54PM -0500, Ron Roskens wrote:
> On Thu, 29 May 2003, Richard Rauch wrote:
 [...]
> > If I read the -current man page correctly and understand the purpose of
> > bridge, does this mean that it is possible in -current to install a
> > firewall that does not consume any IP addresses?
> 
> Correct. I know the man page for brconfig mentions ipfilter support,
> but it wont work unless you have a kernel compiled with "option
 [...]

Thanks.  (^&

Under 1.6 (where I guess the bridge interface appeared), filtering isn't
supported for the bridge.  It was the kernel option in -current that caught
my eye.

This is good news.



-- 
  "I probably don't know what I'm talking about."  http://www.olib.org/~rkr/