PSARC/2008/249 Packet interception for the MAC layer
James Carlson
james.d.carlson at sun.com
Tue Jan 20 10:26:09 PST 2009
Sebastien Roy writes:
> On Tue, 2009-01-20 at 16:31 +0100, Darren Reed wrote:
> > | MAC client index
> > | ----------------
> > | L2 filtering is based on MAC client which is introduced by Crossbow project,
> > | and the filtering is done on a per MAC client basis. When users specify a
> > | link name "net0", this corresponds to the traffic going through the primary
> > | MAC client of net0, e.g. IP on top of that data link.
>
> How does this work with bridging (PSARC 2008/055)? When the bridge
> forwards packets between two MAC providers, there's presumably no MAC
> client involved at all.
That's correct. Filtering at this level won't catch bridge-forwarded
packets.
I think the answer is that we'll need proper hooks in the forwarding
path.
--
James Carlson, Solaris Networking <james.d.carlson at sun.com>
Sun Microsystems / 35 Network Drive 71.232W Vox +1 781 442 2084
MS UBUR02-212 / Burlington MA 01803-2757 42.496N Fax +1 781 442 1677
More information about the opensolaris-arc
mailing list