From nobody@FreeBSD.org  Sat Aug 25 19:27:53 2001
Return-Path: <nobody@FreeBSD.org>
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP id BCBD437B407
	for <freebsd-gnats-submit@FreeBSD.org>; Sat, 25 Aug 2001 19:27:52 -0700 (PDT)
	(envelope-from nobody@FreeBSD.org)
Received: (from nobody@localhost)
	by freefall.freebsd.org (8.11.4/8.11.4) id f7Q2RqS83623;
	Sat, 25 Aug 2001 19:27:52 -0700 (PDT)
	(envelope-from nobody)
Message-Id: <200108260227.f7Q2RqS83623@freefall.freebsd.org>
Date: Sat, 25 Aug 2001 19:27:52 -0700 (PDT)
From: Adam Voigt <avoigt@triad.rr.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: IPFilter Fails to Filter Bridged Packets
X-Send-Pr-Version: www-1.0

>Number:         30091
>Category:       bin
>Synopsis:       IPFilter Fails to Filter Bridged Packets
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    darrenr
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sat Aug 25 19:30:00 PDT 2001
>Closed-Date:    Wed Nov 14 14:03:30 MET 2001
>Last-Modified:  Wed Nov 14 14:04:49 MET 2001
>Originator:     Adam Voigt
>Release:        FreeBSD 4.3
>Organization:
The Cryptocomm Group
>Environment:
N/A
>Description:
IPFilter refuses to filter bridged packets under freebsd, I would classify this as a ipfilter problem except ipfilter filter's bridged packets under OpenBSD just fine.
>How-To-Repeat:
N/A
>Fix:
N/A
>Release-Note:
>Audit-Trail:

From: Sameh Ghane <sw@anthologeek.net>
To: Adam Voigt <avoigt@triad.rr.com>
Cc: freebsd-gnats-submit@FreeBSD.org
Subject: Re: bin/30091: IPFilter Fails to Filter Bridged Packets
Date: Sun, 26 Aug 2001 11:01:32 +0200

 Le (On) Sat, Aug 25, 2001 at 07:27:52PM -0700, Adam Voigt ecrivit (wrote):
 > 
 > >Description:
 > IPFilter refuses to filter bridged packets under freebsd, I would classify this as a ipfilter problem except ipfilter filter's bridged packets under OpenBSD just fine.
 
 ipf was OpenBSD's internal packet filter, and was able to work with bridged
 packets. Under FreeBSD, you have to use ipfw in order to filter bridged packets.
 And in future OpenBSD's release, you'll have to use 'pf' ;)
 
 -- 
 Sameh
Responsible-Changed-From-To: freebsd-bugs->darrenr 
Responsible-Changed-By: cjc 
Responsible-Changed-When: Tue Aug 28 13:15:52 PDT 2001 
Responsible-Changed-Why:  
Give this PR to the author and maintainer of IPFilter 

http://www.FreeBSD.org/cgi/query-pr.cgi?pr=30091 
State-Changed-From-To: open->closed 
State-Changed-By: guido 
State-Changed-When: Wed Nov 14 14:03:30 MET 2001 
State-Changed-Why:  
IPfilter never had the functionality to filter bridged packets 
in FreeBSD. Bridging on FreeBSD and OpenBSD are implemented differently. 
Indeed, as the submitter says, on FreeBSD the only option is to use 
ipfw. 

http://www.FreeBSD.org/cgi/query-pr.cgi?pr=30091 
>Unformatted:
