[Bridge] Feature enhancement - Disable unicast flooding
shemminger at linux-foundation.org
Mon Apr 16 11:11:37 PDT 2007
On Mon, 16 Apr 2007 10:29:31 +1200
Dylan Hall <dylan at citylink.co.nz> wrote:
> For the project I'm working on I require that the bridging code not
> flood unicast frames when the destination mac address is unknown,
> similar to Cisco's "switchport block unicast" feature
> I have produced a small patch (against 220.127.116.11) to control this feature
> per bridge (rather than per port like a Cisco).
> Have I gone about implementing this correctly?
> Is this something other people may find useful, and hence worth
> incorporating into the mainstream code?
> Is it worth the effort of taking this one step further, and controlling
> the behaviour per port rather than per bridge?
Maybe. But this kind of thing is better done with a ebtables module.
That way it can be more easily integrated with other security stuff.
More information about the Bridge